]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ca3539e) | patch
use_proxy(): Add missing terminating NUL byte
authorTomas Mraz <tomas@openssl.org>
Thu, 11 Sep 2025 16:43:55 +0000 (18:43 +0200)
committerTomas Mraz <tomas@openssl.org>
Mon, 29 Sep 2025 10:04:32 +0000 (12:04 +0200)
commitbbf38c034cdabd0a13330abcc4855c866f53d2e0
tree1aa138c63a2c77b9d5d4b449f95a5767fe16bbf2tree | snapshot
parentca3539ef3ca389f1cfa8888c75309428e66d9958commit | diff
use_proxy(): Add missing terminating NUL byte

Fixes CVE-2025-9232

There is a missing terminating NUL byte after strncpy() call.
Issue and a proposed fix reported by Stanislav Fort (Aisle Research).

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(cherry picked from commit 6bca15039e99d37ce3a3564eb862a3b1ff40e63d)
crypto/http/http_lib.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git