Fix a <= 5-byte buffer overwrite in print_bin() - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	tb <>	2023-11-21 16:31:31 +0000
committer	tb <>	2023-11-21 16:31:31 +0000
commit	5c0388d03bb99edfccdc9292f7a5f81da071ea67 (patch)
tree	fe50c364dd33abd3e06e86ffb4e947a22fcc8fe0 /src/lib/libssl/ssl_init.c
parent	bc449f2fcdb189c73149c0777a7bbd8435392539 (diff)
download	openbsd-5c0388d03bb99edfccdc9292f7a5f81da071ea67.tar.gz openbsd-5c0388d03bb99edfccdc9292f7a5f81da071ea67.tar.bz2 openbsd-5c0388d03bb99edfccdc9292f7a5f81da071ea67.zip

Fix a <= 5-byte buffer overwrite in print_bin()

If the offset is > 124, this function would overwrite between 1 and 5 bytes of stack space after str[128]. So for a quick fix extend the buffer by 5 bytes. Obviously this is the permanent fix chosen elswehere. The proper fix will be to rewrite this function from scratch. Reported in detail by Masaru Masuda, many thanks! Fixes https://github.com/libressl/openbsd/issues/145 begrudging ok from beck

Diffstat (limited to 'src/lib/libssl/ssl_init.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: