Mercurial > hg > nginx-quic
diff src/event/ngx_event_connect.c @ 6775:8081e1f3ab8b
SSL: overcame possible buffer over-read in ngx_ssl_error().
It appeared that ERR_error_string_n() cannot handle zero buffer size well enough
and causes over-read.
The problem has also been fixed in OpenSSL:
https://git.openssl.org/?p=openssl.git;h=e5c1361580d8de79682958b04a5f0d262e680f8b
author | Valentin Bartenev <vbart@nginx.com> |
---|---|
date | Tue, 18 Oct 2016 20:46:06 +0300 |
parents | 56fc55e32f23 |
children | 8b70d4caa505 |