Avoid use of uninitialized in tlsext_sni_server_parse() - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	tb <>	2022-01-24 13:49:50 +0000
committer	tb <>	2022-01-24 13:49:50 +0000
commit	9210bb33be202e5d504f07e28f4c2166cb8388f4 (patch)
tree	c3b4b67dcc7a47346bcf780fdc92a1429e2e9c10 /src/lib/libssl/tls13_server.c
parent	1de5f61defd3d7adbd82fc31ea2c09b4b1929b0d (diff)
download	openbsd-9210bb33be202e5d504f07e28f4c2166cb8388f4.tar.gz openbsd-9210bb33be202e5d504f07e28f4c2166cb8388f4.tar.bz2 openbsd-9210bb33be202e5d504f07e28f4c2166cb8388f4.zip

Avoid use of uninitialized in tlsext_sni_server_parse()

If the hostname is too long, tlsext_sni_is_valid_hostname() will fail without having initialized *is_ip. As a result, the garbage value could lead to accepting (but otherwise ignoring) overlong and possibly invalid hostnames without erroring in tlsext_sni_server_parse(). ok inoguchi jsing

Diffstat (limited to 'src/lib/libssl/tls13_server.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: