commit | d21457b05c22ce98ec8e2b99e0d4d3211b739ff2 | [log] [tgz] |
---|---|---|
author | Adam Vartanian <flooey@google.com> | Mon Apr 10 14:56:33 2017 +0100 |
committer | android-build-team Robot <android-build-team-robot@google.com> | Thu Jun 08 18:14:14 2017 +0000 |
tree | c4fa17288b37bb31cf95e075e2c030fecb53b265 | |
parent | 7474e7e2864db445680594bee45888c36ae6f050 [diff] |
CVE 2016-2109 fix Read ASN.1 data in chunks to prevent invalid inputs from allocating excessive amounts of data. Bug: 35443725 Test: make libcrypto Test: manually ran testcase from OpenSSL Change-Id: I5a734b20a8f37cd58216de1781728947ea38b672 Merged-In: Ia9d6aa40726c0cba26e2060108112f33e00e8270 Merged-In: I31285d4bb1b4c069c63eb992d5b1595cdd03713e (cherry picked from commit 56abb3ed723a1cf4c8c2df5a124c5b42f3c70f33)