[3.1] openssl: OOB read in TS_OBJ_print_bio() (CVE-2016-2180)
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509
Public Key Infrastructure Time-Stamp Protocol (TSP)
implementation in OpenSSL through 1.0.2h allows remote attackers to
cause a denial of service (out-of-bounds read
and application crash) via a crafted time-stamp file that is mishandled
by the “openssl ts” command.
Reference:
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2180
Patch:
https://git.openssl.org/?p=openssl.git;a=patch;h=0ed26acce328ec16a3aa635f1ca37365e8c7403a
(from redmine: issue id 6119, created on 2016-09-05, closed on 2016-09-28)
- Relations:
- parent #6115 (closed)
- Changesets:
- Revision a879e6ea by Natanael Copa on 2016-09-19T12:32:23Z:
main/openssl: security fixes
fixes #6119
fixes #6180
- CVE-2016-2179
- CVE-2016-2180
- CVE-2016-2181
- CVE-2016-6302
- CVE-2016-6303