Avoid an out-of-bounds array access in the s_server. - wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

diff options

author	tb <tb@openbsd.org>	2020-05-23 09:02:02 +0000
committer	tb <tb@openbsd.org>	2020-05-23 09:02:02 +0000
commit	5285fdef500c6530038f1d6bcb70135a8dbc7d15 (patch)
tree	16f2ab67202302172c8da596ec995099c1883393 /lib/libssl/ssl_lib.c
parent	Do not assume that server_group != 0 or tlsext_supportedgroups != NULL (diff)
download	wireguard-openbsd-5285fdef500c6530038f1d6bcb70135a8dbc7d15.tar.xz wireguard-openbsd-5285fdef500c6530038f1d6bcb70135a8dbc7d15.zip

Avoid an out-of-bounds array access in the s_server.

It can be triggered by sending a line to stdin while no connection is open and then connecting a client. The first SSL_write() fails, sends SSL_ERROR_WANT_* and then causes a segfault deep down in the tls stack when accessing &(buf[-1]). ok beck inoguchi

Diffstat (limited to 'lib/libssl/ssl_lib.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: