]> git.kaiwu.me - nginx.git/commit
projects / nginx.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5b23fe6) | patch
SSL: improved validation of ssl_session_cache and ssl_ocsp_cache.
authorSergey Kandaurov <pluknet@nginx.com>
Mon, 17 Oct 2022 12:24:53 +0000 (16:24 +0400)
committerSergey Kandaurov <pluknet@nginx.com>
Mon, 17 Oct 2022 12:24:53 +0000 (16:24 +0400)
commit35fce42269bf1c84eadef6660021cefa08a960d7
tree744e00a403f7b2df47544e78bd1bc43318212d21tree | snapshot
parent5b23fe690f0ddd0fe4af1ed01d7a4df95aa54d10commit | diff
SSL: improved validation of ssl_session_cache and ssl_ocsp_cache.

Now it properly detects invalid shared zone configuration with omitted size.
Previously it used to read outside of the buffer boundary.

Found with AddressSanitizer.
src/http/modules/ngx_http_ssl_module.c diff | blob | history
src/mail/ngx_mail_ssl_module.c diff | blob | history
src/stream/ngx_stream_ssl_module.c diff | blob | history
nginx upstream