Skip to content

boringssl

Directory actions

More options

Directory actions

More options

Latest commit

 

History

History

boringssl

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
001-short-metadata-keys-are-accepted-and-stored.md
001-short-metadata-keys-are-accepted-and-stored.md
 
 
001-short-metadata-keys-are-accepted-and-stored.patch
001-short-metadata-keys-are-accepted-and-stored.patch
 
 
003-issuer-private-key-parser-accepts-trailing-bytes.md
003-issuer-private-key-parser-accepts-trailing-bytes.md
 
 
003-issuer-private-key-parser-accepts-trailing-bytes.patch
003-issuer-private-key-parser-accepts-trailing-bytes.patch
 
 
010-pbkdf2-block-counter-can-wrap-for-oversized-keys.md
010-pbkdf2-block-counter-can-wrap-for-oversized-keys.md
 
 
010-pbkdf2-block-counter-can-wrap-for-oversized-keys.patch
010-pbkdf2-block-counter-can-wrap-for-oversized-keys.patch
 
 
016-seal-accepts-ciphertext-lengths-open-always-rejects.md
016-seal-accepts-ciphertext-lengths-open-always-rejects.md
 
 
016-seal-accepts-ciphertext-lengths-open-always-rejects.patch
016-seal-accepts-ciphertext-lengths-open-always-rejects.patch
 
 
021-negative-bit-index-writes-before-buffer-start.md
021-negative-bit-index-writes-before-buffer-start.md
 
 
021-negative-bit-index-writes-before-buffer-start.patch
021-negative-bit-index-writes-before-buffer-start.patch
 
 
022-negative-bit-index-reads-before-buffer-start.md
022-negative-bit-index-reads-before-buffer-start.md
 
 
022-negative-bit-index-reads-before-buffer-start.patch
022-negative-bit-index-reads-before-buffer-start.patch
 
 
023-mismatched-any-tag-is-re-encoded-from-asn1-string-metadata.md
023-mismatched-any-tag-is-re-encoded-from-asn1-string-metadata.md
 
 
023-mismatched-any-tag-is-re-encoded-from-asn1-string-metadata.patch
023-mismatched-any-tag-is-re-encoded-from-asn1-string-metadata.patch
 
 
024-cbc-decrypt-reads-past-short-final-block.md
024-cbc-decrypt-reads-past-short-final-block.md
 
 
024-cbc-decrypt-reads-past-short-final-block.patch
024-cbc-decrypt-reads-past-short-final-block.patch
 
 
025-raw-key-getters-dereference-missing-method-table.md
025-raw-key-getters-dereference-missing-method-table.md
 
 
025-raw-key-getters-dereference-missing-method-table.patch
025-raw-key-getters-dereference-missing-method-table.patch
 
 
026-missing-delimiter-check-before-iv-parsing.md
026-missing-delimiter-check-before-iv-parsing.md
 
 
026-missing-delimiter-check-before-iv-parsing.patch
026-missing-delimiter-check-before-iv-parsing.patch
 
 
027-zero-length-key-causes-out-of-bounds-read.md
027-zero-length-key-causes-out-of-bounds-read.md
 
 
027-zero-length-key-causes-out-of-bounds-read.patch
027-zero-length-key-causes-out-of-bounds-read.patch
 
 
035-poison-state-can-be-cleared-by-copying-clean-params.md
035-poison-state-can-be-cleared-by-copying-clean-params.md
 
 
035-poison-state-can-be-cleared-by-copying-clean-params.patch
035-poison-state-can-be-cleared-by-copying-clean-params.patch
 
 
README.md
README.md
 
 

README.md

BoringSSL Audit Findings

Security audit of BoringSSL, Google's fork of OpenSSL. Each finding includes a detailed write-up and a patch.

Summary

Total findings: 12 -- High: 4, Medium: 8

Findings

Trust Token

# Finding Severity
001 Short metadata keys are accepted and stored High
003 Issuer private key parser accepts trailing bytes Medium

ASN.1 / DER encoding

# Finding Severity
021 Negative bit index writes before buffer start High
022 Negative bit index reads before buffer start Medium
023 Mismatched ANY tag re-encoded from ASN1_STRING metadata Medium

Symmetric ciphers (RC2, RC4, AES-EAX)

# Finding Severity
016 AES-EAX seal/open length limit mismatch Medium
024 RC2-CBC decrypt reads past short final block High
027 RC4 zero-length key out-of-bounds read High

KDF and PEM parsing

# Finding Severity
010 PBKDF2 block counter wraps for oversized keys Medium
026 Missing DEK-Info delimiter check before IV parsing Medium

EVP key handling

# Finding Severity
025 Raw key getters dereference missing method table Medium

X.509 verification

# Finding Severity
035 Poison state cleared by clean param copy Medium