[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#5010) broken ber_encode_oid/ber_decode_oid()

h.b.furuseth@usit.uio.no wrote:
> I wrote:
>> Finally, libldap/tls.c does not check if ber_decode_oid() fails.
> Fixed that.  Waiting for the other stuff, depends on the code's intent.
Go ahead and fix whatever problems you see. Assume that maliciously constructed 
cert DNs are present, because undoubtedly there will be.

   -- Howard Chu
   Chief Architect, Symas Corp.  http://www.symas.com
   Director, Highland Sun        http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP     http://www.openldap.org/project/