42 lines
1.6 KiB
Diff
42 lines
1.6 KiB
Diff
From 2f177ac5e83391054c7b95ba697a6293c9b3c6bd Mon Sep 17 00:00:00 2001
|
|
From: starlet-dx <15929766099@163.com>
|
|
Date: Wed, 22 Feb 2023 17:47:37 +0800
|
|
Subject: [PATCH 1/1] CVE-2023-0286 Fix GENERAL_NAME_cmp for x400Address (1.1.1)
|
|
|
|
Reviewed-by: Paul Dale <pauli@openssl.org>
|
|
Reviewed-by: Tomas Mraz <tomas@openssl.org>
|
|
---
|
|
deps/openssl/openssl/crypto/x509v3/v3_genn.c | 2 +-
|
|
deps/openssl/openssl/include/openssl/x509v3.h | 2 +-
|
|
2 files changed, 2 insertions(+), 2 deletions(-)
|
|
|
|
diff --git a/deps/openssl/openssl/crypto/x509v3/v3_genn.c b/deps/openssl/openssl/crypto/x509v3/v3_genn.c
|
|
index 87a5eff4..e54ddc55 100644
|
|
--- a/deps/openssl/openssl/crypto/x509v3/v3_genn.c
|
|
+++ b/deps/openssl/openssl/crypto/x509v3/v3_genn.c
|
|
@@ -98,7 +98,7 @@ int GENERAL_NAME_cmp(GENERAL_NAME *a, GENERAL_NAME *b)
|
|
return -1;
|
|
switch (a->type) {
|
|
case GEN_X400:
|
|
- result = ASN1_TYPE_cmp(a->d.x400Address, b->d.x400Address);
|
|
+ result = ASN1_STRING_cmp(a->d.x400Address, b->d.x400Address);
|
|
break;
|
|
|
|
case GEN_EDIPARTY:
|
|
diff --git a/deps/openssl/openssl/include/openssl/x509v3.h b/deps/openssl/openssl/include/openssl/x509v3.h
|
|
index 90fa3592..e61c0f29 100644
|
|
--- a/deps/openssl/openssl/include/openssl/x509v3.h
|
|
+++ b/deps/openssl/openssl/include/openssl/x509v3.h
|
|
@@ -136,7 +136,7 @@ typedef struct GENERAL_NAME_st {
|
|
OTHERNAME *otherName; /* otherName */
|
|
ASN1_IA5STRING *rfc822Name;
|
|
ASN1_IA5STRING *dNSName;
|
|
- ASN1_TYPE *x400Address;
|
|
+ ASN1_STRING *x400Address;
|
|
X509_NAME *directoryName;
|
|
EDIPARTYNAME *ediPartyName;
|
|
ASN1_IA5STRING *uniformResourceIdentifier;
|
|
--
|
|
2.30.0
|
|
|