diff options
| author | Ramil Kalimullin <ramil@mysql.com> | 2010-01-13 09:20:45 +0400 |
|---|---|---|
| committer | Ramil Kalimullin <ramil@mysql.com> | 2010-01-13 09:20:45 +0400 |
| commit | 495810cd1f8ceb19e7126daa5ab92660c8f942b0 (patch) | |
| tree | 1b839959b455c0b8c63f54e9de2ab6170a7f0817 /mysys | |
| parent | 107f34ed77aad27b1fca24aaf048d1cbb28978b2 (diff) | |
| download | mariadb-git-495810cd1f8ceb19e7126daa5ab92660c8f942b0.tar.gz | |
Fix for bug#50227: Pre-auth buffer-overflow in mySQL through yaSSL
Problem: copying issuer's (or subject's) name tags into an internal
buffer from incoming stream we didn't check the buffer overflow.
That may lead to memory overrun, crash etc.
Fix: ensure we don't overrun the buffer.
Note: there's no simple test case (exploit needed).
extra/yassl/taocrypt/include/asn.hpp:
Fix for bug#50227: Pre-auth buffer-overflow in mySQL through yaSSL
- CertDecoder::AddTag() introduced.
extra/yassl/taocrypt/src/asn.cpp:
Fix for bug#50227: Pre-auth buffer-overflow in mySQL through yaSSL
- copying data from incoming stream to the issuer_ or subject_
buffers ensure we don't overrun them.
- code cleanup.
Diffstat (limited to 'mysys')
0 files changed, 0 insertions, 0 deletions