[Pkg-openssl-devel] Re: [jaenicke@openssl.org: Re: Potential
security hole in openssl]
Kurt Roeckx
kurt at roeckx.be
Sun Mar 4 22:51:19 CET 2007
On Sat, Mar 03, 2007 at 07:13:44AM +0100, Richard Levitte - VMS Whacker wrote:
> In message <20070302074259.GB7943 at burnside> on Fri, 2 Mar 2007 07:42:59 +0000, Julian Gilbey <jdg at polya.uklinux.net> said:
>
> jdg> The patch by Kurt is attached.
>
> Please tell Kurt there's a small bug in his patch. He should
> malloc(strlen(buf)), or dstr will not have space for the ending \0.
> Incidently, the last argument to strlcpy() should be strlen(buf) (not
> strlen(buf)-1) as well.
I think the idea was to remove the \n. I first changed both, then I
changed it back.
Kurt
More information about the Pkg-openssl-devel
mailing list