Contributed by merdely on from the pointing-out-the-goo dept.
Patches are available for OpenBSD 4.2 (errata, patch), OpenBSD 4.1 (errata, patch) and OpenBSD 4.0 (errata, patch) which address an off-by-one overflow in the SSL_get_shared_ciphers() function in OpenSSL. This vulnerability affects all architectures.
Edit: Commit information corrected.
CVSROOT: /cvs Module name: src Changes by: moritz@ 2007/10/10 13:39:19 Modified files: lib/libssl/src/ssl: ssl_lib.c Log message: Replace use of strcpy(3) and other pointer goo in SSL_get_shared_ciphers() with strlcat(3). ok deraadt@ markus@ ------------------- CVSROOT: /cvs Module name: src Changes by: moritz@ 2007/09/27 10:18:12 Modified files: lib/libssl/src/ssl: ssl_lib.c Log message: Fix off-by-one buffer overflow in SSL_get_shared_ciphers(). From OpenSSL_0_9_8-stable branch. ok djm@
(The updates to the -stable branches were made by henning@.)
(Comments are closed)