diff options
| author | tb <> | 2022-01-24 13:49:50 +0000 | 
|---|---|---|
| committer | tb <> | 2022-01-24 13:49:50 +0000 | 
| commit | 9210bb33be202e5d504f07e28f4c2166cb8388f4 (patch) | |
| tree | c3b4b67dcc7a47346bcf780fdc92a1429e2e9c10 /src/lib/libc/string/strncmp.c | |
| parent | 1de5f61defd3d7adbd82fc31ea2c09b4b1929b0d (diff) | |
| download | openbsd-9210bb33be202e5d504f07e28f4c2166cb8388f4.tar.gz openbsd-9210bb33be202e5d504f07e28f4c2166cb8388f4.tar.bz2 openbsd-9210bb33be202e5d504f07e28f4c2166cb8388f4.zip | |
Avoid use of uninitialized in tlsext_sni_server_parse()
If the hostname is too long, tlsext_sni_is_valid_hostname() will fail
without having initialized *is_ip. As a result, the garbage value could
lead to accepting (but otherwise ignoring) overlong and possibly invalid
hostnames without erroring in tlsext_sni_server_parse().
ok inoguchi jsing
Diffstat (limited to 'src/lib/libc/string/strncmp.c')
0 files changed, 0 insertions, 0 deletions
