- Better checking for reading over buffer boundaries

- Zeroize altSubjectName chain memory before use
2026-03-11 16:06:28 +00:00 · 2012-08-23 10:49:55 +00:00
parent 9195662a4c
commit 535e97dbab
2 changed files with 22 additions and 13 deletions
--- a/1
+++ b/1
@@ -45,6 +45,7 @@ Bugfix
   * Handle encryption with private key and decryption with public key as per
   	 RFC 2313
   * Handle empty certificate subject names
+   * Prevent reading over buffer boundaries on X509 certificate parsing

 Security
   * Fixed potential memory corruption on miscrafted client messages (found by