detect that a certificate chain will not fit in imsg calls before passing - wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

diff options

author	gilles <gilles@openbsd.org>	2015-10-02 00:44:30 +0000
committer	gilles <gilles@openbsd.org>	2015-10-02 00:44:30 +0000
commit	290f027c56f4ee6f146f36d336e69bb45c5dd153 (patch)
tree	2e77a67818cfdf26d09d5e77d06a8bcad67f7f52 /usr.bin/ssh/sandbox-systrace.c
parent	in secure_file(), make uid checking on .forward files more strict to avoid (diff)
download	wireguard-openbsd-290f027c56f4ee6f146f36d336e69bb45c5dd153.tar.xz wireguard-openbsd-290f027c56f4ee6f146f36d336e69bb45c5dd153.zip

detect that a certificate chain will not fit in imsg calls before passing

part of it and failing others, this may leave the lookup process in a weird state and cause use-after-free and out-of-bounds memory reads, leading to crashes or potential arbitrary code execution in unprivileged process. reported by Qualys Security

Diffstat (limited to 'usr.bin/ssh/sandbox-systrace.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: