Avoid a path traversal bug in s_server on Windows. - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	bcook <>	2019-10-04 09:47:34 +0000
committer	bcook <>	2019-10-04 09:47:34 +0000
commit	b29a57bea58d7cd747e966d28767faf30528d923 (patch)
tree	979710938ff694121605f5f76e18747b6065f785 /src/lib/libssl/s3_lib.c
parent	4ce125314d2319097bddaec3cf989e1d336cf4e4 (diff)
download	openbsd-b29a57bea58d7cd747e966d28767faf30528d923.tar.gz openbsd-b29a57bea58d7cd747e966d28767faf30528d923.tar.bz2 openbsd-b29a57bea58d7cd747e966d28767faf30528d923.zip

Avoid a path traversal bug in s_server on Windows.

openssl s_server has an arbitrary read vulnerability on Windows when run with the -WWW or -HTTP options, due to an incomplete path check logic. Thanks to Jobert Abma for reporting. ok tb@

Diffstat (limited to 'src/lib/libssl/s3_lib.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: