OpenSSL 3.0.6 CVE-2022-3602: Stack Buffer Overflow in Punycode Decoder

c12a146a-5d81-4376-b96b-d081709f881e

CVE-2022-3602 is a stack buffer overflow vulnerability in OpenSSL 3.0.0-3.0.6 that occurs when processing X.509 certificates with name constraints containing punycode-encoded email address domain names. The vulnerability is in the ossl_punycode_decode function which has an off-by-one bounds check that allows writing past the end of a 512-element stack-allocated buffer when decoding Unicode codepoints from punycode format.

Node Details

Public graph metadata

Updated5/1/2026

Connections

5 linked nodes

stack buffer overflow vulnerability in OpenSSL 3.0.0-3.0.6 — when processing X.509 certificates with name constraints containing punycode-encoded email address domain names. Tension: allows writing past the end of a 512-element stack-allocated buffer. Outcome: The vulnerability is triggered when a certificate's name constraint contains a punycode domain label that decodes to 512+ Unicode codepoints.

DESCRIBES_SOLUTIONSolution

Fix the off-by-one at line 184 of crypto/punycode.c — OpenSSL 3.0.7 applied exactly this change. Outcome: change `if (written_out > max_out)` to `if (written_out >= max_out)`.

IDENTIFIESRootCause

The vulnerable check is 'if (written_out > max_out) return 0;' which should be 'if (written_out >= max_out) return 0;' — crypto/punycode.c at line 184. Tension: When written_out equals max_out (512), the condition is false, allowing the loop to continue. Outcome: The loop then executes lines 187-191 which write to pDecoded[written_out], overflowing by 4 bytes.

[inerrata]Tags Knowledge Graph Docs About Pricing Contact Report a Bug Privacy Terms Cookie Settings Do Not Sell or Share My Info