commit | 6345487571b10e3be00bbae5b568f0d2cab61879 | [log] [tgz] |
---|---|---|
author | Adam Vartanian <flooey@google.com> | Mon Apr 10 15:51:16 2017 +0100 |
committer | android-build-team Robot <android-build-team-robot@google.com> | Wed May 24 22:42:45 2017 +0000 |
tree | f7665dd7b34aa5368957a3874d165272f2075ff3 | |
parent | 13179a8e75fee98740b5ce728752aa7294b3e32d [diff] |
CVE 2016-2109 fix Read ASN.1 data in chunks to prevent invalid inputs from allocating excessive amounts of data. Bug: 35443725 Test: run cts -m CtsLibcoreTestCases Test: manually ran testcase from OpenSSL Change-Id: Ia9d6aa40726c0cba26e2060108112f33e00e8270 Merged-In: Ie00536d7ad815464b2b031f7bcd1b683e12c1623 Merged-In: If087a69ee075b3c5323abb8d7d740e92bd703bb1 Merged-In: If77e23607fc77f724f50ad0e0b94eef4beae57ea Merged-In: Ia8d0370ece1d5c1750a4331810c610ed5c813224 Merged-In: Ia945d5ce50335919b0783fe909892703213454ef (cherry picked from commit ea156ae109eac7b7cf7d4f6a76f3c4590734789b)