Google Git
Sign in
android/platform/external/boringssl/refs/heads/nougat-mr2-security-release
commit
52550a008d72d068928c145bec4abb51012552a3
[log]
author
Adam Vartanian <[email protected]>
Mon Apr 10 15:51:16 2017 +0100
committer
JP Sugarbroad <[email protected]>
Fri May 19 00:29:31 2017 -0700
tree
f7665dd7b34aa5368957a3874d165272f2075ff3
parent
6e859aa91230c543651003456531db95c563f3cd [diff]
CVE 2016-2109 fix

Read ASN.1 data in chunks to prevent invalid inputs from allocating
excessive amounts of data.

Bug: 35443725
Test: run cts -m CtsLibcoreTestCases
Test: manually ran testcase from OpenSSL
Change-Id: Ia9d6aa40726c0cba26e2060108112f33e00e8270
Merged-In: Ie00536d7ad815464b2b031f7bcd1b683e12c1623
Merged-In: If087a69ee075b3c5323abb8d7d740e92bd703bb1
Merged-In: If77e23607fc77f724f50ad0e0b94eef4beae57ea
Merged-In: Ia8d0370ece1d5c1750a4331810c610ed5c813224
Merged-In: Ia945d5ce50335919b0783fe909892703213454ef
(cherry picked from commit ea156ae109eac7b7cf7d4f6a76f3c4590734789b)
1 file changed
tree: f7665dd7b34aa5368957a3874d165272f2075ff3
  1. linux-aarch64/
  2. linux-arm/
  3. linux-x86/
  4. linux-x86_64/
  5. mac-x86/
  6. mac-x86_64/
  7. src/
  8. win-x86/
  9. win-x86_64/
  10. arm_arch.hsrc/crypto/arm_arch.h
  11. includesrc/include
  12. Android.mk
  13. android_compat_hacks.c
  14. android_compat_keywrap.c
  15. BORINGSSL_REVISION
  16. crypto-sources.mk
  17. err_data.c
  18. flavor.mk
  19. MODULE_LICENSE_BSD_LIKE
  20. NOTICE
  21. rules.mk
  22. sources.mk
  23. ssl-sources.mk
  24. UPDATING