aboutsummaryrefslogtreecommitdiff
path: root/website/static/security/patches/SA-25:08/openssl-14.patch
diff options
context:
space:
mode:
Diffstat (limited to 'website/static/security/patches/SA-25:08/openssl-14.patch')
-rw-r--r--website/static/security/patches/SA-25:08/openssl-14.patch21
1 files changed, 21 insertions, 0 deletions
diff --git a/website/static/security/patches/SA-25:08/openssl-14.patch b/website/static/security/patches/SA-25:08/openssl-14.patch
new file mode 100644
index 0000000000..10c55dd60a
--- /dev/null
+++ b/website/static/security/patches/SA-25:08/openssl-14.patch
@@ -0,0 +1,21 @@
+--- crypto/openssl/crypto/cms/cms_pwri.c.orig
++++ crypto/openssl/crypto/cms/cms_pwri.c
+@@ -228,7 +228,7 @@
+ /* Check byte failure */
+ goto err;
+ }
+- if (inlen < (size_t)(tmp[0] - 4)) {
++ if (inlen < 4 + (size_t)tmp[0]) {
+ /* Invalid length value */
+ goto err;
+ }
+--- crypto/openssl/crypto/http/http_lib.c.orig
++++ crypto/openssl/crypto/http/http_lib.c
+@@ -267,6 +267,7 @@
+ /* strip leading '[' and trailing ']' from escaped IPv6 address */
+ sl -= 2;
+ strncpy(host, server + 1, sl);
++ host[sl] = '\0';
+ server = host;
+ }
+
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-07 02:25:18 +0000