HomeFreeBSD

openssl: Avoid type errors in EAI-related name check logic.

Description

openssl: Avoid type errors in EAI-related name check logic.

The incorrectly typed data is read only, used in a compare operation, so
neither remote code execution, nor memory content disclosure were possible.
However, applications performing certificate name checks were vulnerable to
denial of service.

The GENERAL_TYPE data type is a union, and we must take care to access the
correct member, based on gen->type, not all the member fields have the same
structure, and a segfault is possible if the wrong member field is read.

The code in question was lightly refactored with the intent to make it more
obviously correct.

Security: CVE-2024-6119
Obtained from: OpenSSL Project

(cherry picked from commit 1486960d6cdb052e4fc0109a56a0597b4e902ba1)

Details

Provenance
Viktor Dukhovni <viktor@openssl.org>Authored on Jun 19 2024, 11:04 AM
gordonCommitted on Sep 3 2024, 5:07 PM
Parents
rG06bb8e1dab00: contrib/bc: fix build with GCC
Branches
Unknown
Tags
Unknown