| Paul Elliott | 634748d | 2024-01-16 11:16:56 +0000 | [diff] [blame^] | 1 | Security |
| 2 | * Fix a failure to validate input when writing x509 extensions lengths which | ||||
| 3 | could result in an integer overflow, causing a zero-length buffer to be | ||||
| 4 | allocated to hold the extension. The extension would then be copied into | ||||
| 5 | the buffer, causing a heap buffer overflow. | ||||
| 6 | |||||
| 7 | |||||
| 8 | |||||