git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Bob Beck <beck@openssl.org>
	Wed, 7 Jan 2026 18:29:48 +0000 (11:29 -0700)
committer	Tomas Mraz <tomas@openssl.org>
	Mon, 26 Jan 2026 19:53:20 +0000 (20:53 +0100)
commit	ea8fc4c345fbd749048809c9f7c881ea656b0b94
tree	84ff263992e3ccea227052d794ec09d996cd99cb	tree \| snapshot
parent	be9375d5d45dfaf897b56ef148a0b58402491fcb	commit \| diff

Verify ASN1 object's types before attempting to access them
as a particular type

Issue was reported in ossl_ess_get_signing_cert but is also present in
ossl_ess_get_signing_cert_v2.

Fixes: https://github.com/openssl/srt/issues/61
Fixes CVE-2025-69420

Reviewed-by: Norbert Pocs <norbertp@openssl.org>
Reviewed-by: Saša Nedvědický <sashan@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
MergeDate: Mon Jan 26 19:53:36 2026

crypto/ts/ts_rsp_verify.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom