diff options
| author | clement <clement@FreeBSD.org> | 2005-07-26 16:25:13 +0800 |
|---|---|---|
| committer | clement <clement@FreeBSD.org> | 2005-07-26 16:25:13 +0800 |
| commit | 051c2b7e5f4af9c3ed4f36e2421b73a3f0c9de40 (patch) | |
| tree | e17dc127919d3064cc1912d059343be2096e578a /www/apache2/files | |
| parent | c0cb020fd929842f3e720c25db3bfc98c9130398 (diff) | |
| download | freebsd-ports-graphics-051c2b7e5f4af9c3ed4f36e2421b73a3f0c9de40.tar.gz freebsd-ports-graphics-051c2b7e5f4af9c3ed4f36e2421b73a3f0c9de40.tar.zst freebsd-ports-graphics-051c2b7e5f4af9c3ed4f36e2421b73a3f0c9de40.zip | |
Security: fix a buffer overrun in ssl_callback_SSLVerify_CRL()
Reported by: thierry
Diffstat (limited to 'www/apache2/files')
| -rw-r--r-- | www/apache2/files/patch-secfix-ssl_engine_kernel.c | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/www/apache2/files/patch-secfix-ssl_engine_kernel.c b/www/apache2/files/patch-secfix-ssl_engine_kernel.c new file mode 100644 index 00000000000..3b8be849954 --- /dev/null +++ b/www/apache2/files/patch-secfix-ssl_engine_kernel.c @@ -0,0 +1,11 @@ +--- modules/ssl/ssl_engine_kernel.c 2005/06/08 09:00:24 189561 ++++ modules/ssl/ssl_engine_kernel.c 2005/06/08 09:08:09 189562 +@@ -1398,7 +1398,7 @@ + BIO_printf(bio, ", nextUpdate: "); + ASN1_UTCTIME_print(bio, X509_CRL_get_nextUpdate(crl)); + +- n = BIO_read(bio, buff, sizeof(buff)); ++ n = BIO_read(bio, buff, sizeof(buff) - 1); + buff[n] = '\0'; + + BIO_free(bio); |