openssl: OOB read in TS_OBJ_print_bio() (CVE-2016-2180)
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509
Public Key Infrastructure Time-Stamp Protocol (TSP)
implementation in OpenSSL through 1.0.2h allows remote attackers to
cause a denial of service (out-of-bounds read
and application crash) via a crafted time-stamp file that is mishandled
by the “openssl ts” command.
Reference:
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2180
Patch:
https://git.openssl.org/?p=openssl.git;a=patch;h=0ed26acce328ec16a3aa635f1ca37365e8c7403a
(from redmine: issue id 6115, created on 2016-09-05, closed on 2016-09-28)
- Relations:
- child #6116 (closed)
- child #6117 (closed)
- child #6118 (closed)
- child #6119 (closed)