Google Git
Sign in
android / platform / external / boringssl / ab351f4a837dc98b862d6efdc8a7732b67c57c13
commitab351f4a837dc98b862d6efdc8a7732b67c57c13[log] [tgz]
authorDavid Benjamin <davidben@google.com>Tue Jan 31 13:36:55 2023 -0500
committerPete Bentley <prb@google.com>Thu Mar 09 17:18:41 2023 +0000
tree5a0e2fc4ce090106fc122f6c2a5cc97fe712b114
parent5f001c771918152b072c78c149809352c46d6fad [diff]
Fix the type of x400Address in GENERAL_NAME

This fixes CVE-2023-0286.

The main impact is that GENERAL_NAME_cmp, when given x400Addresses, can
interpret a pointer with the wrong type. Applications that set
X509_V_FLAG_CRL_CHECK and take CRLs from untrusted sources should take
this patch.

Bug: 266637308
Test: atest boringssl_crypto_test boringssl_ssl_test
Change-Id: Ib76265fa098df3cb0db075646773c14d59d0ca75
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/56985
Commit-Queue: Bob Beck <bbe@google.com>
Auto-Submit: David Benjamin <davidben@google.com>
Reviewed-by: Bob Beck <bbe@google.com>
3 files changed
tree: 5a0e2fc4ce090106fc122f6c2a5cc97fe712b114
  1. apple-aarch64/
  2. apple-arm/
  3. apple-x86/
  4. apple-x86_64/
  5. ios-aarch64/
  6. ios-arm/
  7. linux-aarch64/
  8. linux-arm/
  9. linux-ppc64le/
  10. linux-x86/
  11. linux-x86_64/
  12. selftest/
  13. src/
  14. win-aarch64/
  15. win-x86/
  16. win-x86_64/
  17. BUILDsrc/util/BUILD.toplevel
  18. includesrc/include
  19. LICENSEsrc/LICENSE
  20. android-sources.cmake
  21. Android.bp
  22. BORINGSSL_REVISION
  23. BUILD.generated.bzl
  24. BUILD.generated_tests.bzl
  25. crypto-sources.mk
  26. crypto_test_data.cc
  27. CryptoNativeTests.xml
  28. err_data.c
  29. eureka.mk
  30. METADATA
  31. MODULE_LICENSE_BSD_LIKE
  32. NOTICE
  33. OWNERS
  34. PREUPLOAD.cfg
  35. rules.mk
  36. sources.bp
  37. sources.mk
  38. SslNativeTests.xml
  39. TEST_MAPPING
  40. UPDATING