[xmltooling] 54/65: CPPXT-109 - XSECCryptoX509CRL::loadX509CRLPEM() can read past unterminated buffer
Ferenc Wágner
wferi-guest at moszumanska.debian.org
Thu Jun 30 13:07:43 UTC 2016
This is an automated email from the git hooks/post-receive script.
wferi-guest pushed a commit to branch debian/master
in repository xmltooling.
commit db08101c3854518a59096be95ed6564838381744
Author: Scott Cantor <cantor.2 at osu.edu>
Date: Sun Jun 26 15:25:31 2016 -0400
CPPXT-109 - XSECCryptoX509CRL::loadX509CRLPEM() can read past unterminated buffer
https://issues.shibboleth.net/jira/browse/CPPXT-109
---
xmltooling/security/impl/XSECCryptoX509CRL.cpp | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/xmltooling/security/impl/XSECCryptoX509CRL.cpp b/xmltooling/security/impl/XSECCryptoX509CRL.cpp
index 2d2a280..59ee697 100644
--- a/xmltooling/security/impl/XSECCryptoX509CRL.cpp
+++ b/xmltooling/security/impl/XSECCryptoX509CRL.cpp
@@ -53,7 +53,7 @@ void XSECCryptoX509CRL::loadX509CRLPEM(const char* buf, unsigned int len)
b = b1;
}
- const char *p = strstr(buf, "-----BEGIN X509 CRL-----");
+ const char *p = strstr(b, "-----BEGIN X509 CRL-----");
if (p == nullptr) {
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-shibboleth/xmltooling.git
More information about the Pkg-shibboleth-devel
mailing list