[gnutls-devel] fixes on 3.3.x gnutls branch, why not this one?
Andreas Metzler
ametzler at bebt.de
Sun Mar 5 16:20:24 CET 2017
Hello,
is there a reason why this patch was cherrypicked for the 3.5.x
branch but not for 3.3.x?
e2b02861caea3cb9a173e6993640b4e7112bdb44
pencdk: read_attribute: account buffer size
That ensures that there is no read past the end of buffer.
Resolves the oss-fuzz found bug:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=391
Relates: #159
tia, cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
More information about the Gnutls-devel
mailing list