[3.2] openssl: OOB read in TS_OBJ_print_bio() (CVE-2016-2180)
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509
Public Key Infrastructure Time-Stamp Protocol (TSP)
implementation in OpenSSL through 1.0.2h allows remote attackers to
cause a denial of service (out-of-bounds read
and application crash) via a crafted time-stamp file that is mishandled
by the “openssl ts” command.
Reference:
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2180
Patch:
https://git.openssl.org/?p=openssl.git;a=patch;h=0ed26acce328ec16a3aa635f1ca37365e8c7403a
(from redmine: issue id 6118, created on 2016-09-05, closed on 2016-09-28)
- Relations:
- parent #6115 (closed)
- Changesets:
- Revision 11732606 on 2016-09-09T08:07:44Z:
main/openssl: fix for CVE-2016-2180
fixes #6118
(cherry picked from commit ecfc04f3961ec4ffa2c972bd72253ba1a03a3c1e)