CVE-2016-6559: fix potential buffer overflow(s) in link_ntoa(3). - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	millert <>	2016-12-06 22:32:58 +0000
committer	millert <>	2016-12-06 22:32:58 +0000
commit	9c7308f23068f3d90f1bb1a2ef7d36ecbed581d6 (patch)
tree	2e9e084dc27ddb18364fa91983e3904f2bf3b0a2 /src/lib/libssl/man/SSL_CTX_get_ex_new_index.3
parent	9d715a5790fa985150b95cc086e8d99daec28daa (diff)
download	openbsd-9c7308f23068f3d90f1bb1a2ef7d36ecbed581d6.tar.gz openbsd-9c7308f23068f3d90f1bb1a2ef7d36ecbed581d6.tar.bz2 openbsd-9c7308f23068f3d90f1bb1a2ef7d36ecbed581d6.zip

CVE-2016-6559: fix potential buffer overflow(s) in link_ntoa(3).

A specially crafted struct sockaddr_dl argument can trigger a stack overflow of a static buffer in libc. An attacker may be able to use this to write to arbitrary locations in the data segment. From FreeBSD (glebius); OK deraadt@ mestre@

Diffstat (limited to 'src/lib/libssl/man/SSL_CTX_get_ex_new_index.3')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: