866cde7070b3eec1dd7bb301379dbb3cb455d8a7 - nginx

commit: 866cde7070b3eec1dd7bb301379dbb3cb455d8a7
[log] [tgz]
author: Valentin Bartenev <vbart@nginx.com>
Tue Oct 18 20:46:06 2016 +0300
committer: Valentin Bartenev <vbart@nginx.com>
Tue Oct 18 20:46:06 2016 +0300
tree: 9d874386904774bc44128631fb426b4e03363b62
parent: 8b016c0ef6d8a9f8a7900bb5d50410c520f3a370 [diff]

SSL: overcame possible buffer over-read in ngx_ssl_error().

It appeared that ERR_error_string_n() cannot handle zero buffer size well enough
and causes over-read.

The problem has also been fixed in OpenSSL:
https://git.openssl.org/?p=openssl.git;h=e5c1361580d8de79682958b04a5f0d262e680f8b

src/event/ngx_event_openssl.c[diff]

1 file changed

tree: 9d874386904774bc44128631fb426b4e03363b62

auto/
conf/
contrib/
docs/
misc/
src/
.hgtags