OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-06 11:39:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Report buffer-overread in OpenSSL (#1719)

Browse Source 
* Report buffer-overread in OpenSSL

* Rename RUSTSEC-0000-0000 to RUSTSEC-0000-0000.md
This commit is contained in:
Alex Gaynor
2023-06-20 16:32:25 -05:00
committed by GitHub
parent 37abf6e463
commit e8534eadc5
1 changed files with 18 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
crates/openssl/RUSTSEC-0000-0000.md Normal file
View File

@@ -0,0 +1,18 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
package = "openssl"
date = "2023-06-20"
url = "https://github.com/sfackler/rust-openssl/issues/1965"
categories = ["memory-exposure"]
[affected]
functions = { "openssl::x509::verify::X509VerifyParamRef::set_host" = ["< 0.10.55, >=0.10.0"] }
[versions]
patched = [">= 0.10.55"]
```
# `openssl` `X509VerifyParamRef::set_host` buffer over-read
When this function was passed an empty string, `openssl` would attempt to call `strlen` on it, reading arbitrary memory until it reached a NUL byte.