luo980/curl - curl - Kebab: Code with Heart

Author SHA1 Message Date

Author	SHA1	Message	Date
Viktor Szakats	3fd1dfc829	tidy-up: use `CURL_ARRAYSIZE()` Follow-up to `13b2ea68f0` #16111 Closes #16381	2025-02-19 00:59:45 +01:00
Stefan Eissing	65fca12e63	x509asn1: add parse recursion limit For ASN.1 tags with indefinite length, curl's own parser for TLS backends that do not support certificate inspection calls itself recursively. A malicious server certificate can then lead to high recursion level exhausting the stack space. This PR limits the recursion level to 16 which should be safe on all architectures. Added unit test 1657 to verify behaviour. Fixes #16135 Reported-by: z2_ Closes #16137	2025-02-03 20:10:09 +01:00

Viktor Szakats

3fd1dfc829

tidy-up: use CURL_ARRAYSIZE()

Follow-up to 13b2ea68f0 #16111

Closes #16381

2025-02-19 00:59:45 +01:00

Stefan Eissing

65fca12e63

x509asn1: add parse recursion limit

For ASN.1 tags with indefinite length, curl's own parser for TLS
backends that do not support certificate inspection calls itself
recursively. A malicious server certificate can then lead to high
recursion level exhausting the stack space.

This PR limits the recursion level to 16 which should be safe on all
architectures.

Added unit test 1657 to verify behaviour.

Fixes #16135
Reported-by: z2_
Closes #16137

2025-02-03 20:10:09 +01:00

2 Commits