X-Git-Url: http://pileus.org/git/?a=blobdiff_plain;f=fetchmail-SA-2009-01.txt;h=eb50a9e822d9ba9e84b3367936f331704bbbfc7c;hb=f78031293074cfd648a4f5453727a687d6886490;hp=f1293e53d9d39a8d770b88abe8952225d4b11c55;hpb=9d1fb0f612794c8287ed5a8f0a53e71fcb3ae5fa;p=~andy%2Ffetchmail diff --git a/fetchmail-SA-2009-01.txt b/fetchmail-SA-2009-01.txt index f1293e53..eb50a9e8 100644 --- a/fetchmail-SA-2009-01.txt +++ b/fetchmail-SA-2009-01.txt @@ -1,3 +1,6 @@ +-----BEGIN PGP SIGNED MESSAGE----- +Hash: SHA1 + fetchmail-SA-2009-01: Improper SSL certificate subject verification Topics: Improper SSL certificate subject verification @@ -99,15 +102,17 @@ A. Copyright, License and Warranty (C) Copyright 2009 by Matthias Andree, . Some rights reserved. -This work is licensed under the Creative Commons -Attribution-Noncommercial-No Derivative Works 3.0 Germany License. +This work is licensed under the +Creative Commons Attribution-NoDerivs 3.0 Germany License (CC BY-ND 3.0). + To view a copy of this license, visit -http://creativecommons.org/licenses/by-nc-nd/3.0/de/ or send a letter to +http://creativecommons.org/licenses/by-nd/3.0/de/deed.en +or send a letter to: Creative Commons -171 Second Street -Suite 300 -SAN FRANCISCO, CALIFORNIA 94105 +444 Castro Street +Suite 900 +MOUNTAIN VIEW, CALIFORNIA 94041 USA @@ -129,7 +134,7 @@ so try this if the patch does not apply. Index: socket.c =================================================================== ---- ./socket.c~ +- --- ./socket.c~ +++ ./socket.c @@ -632,6 +632,12 @@ report(stderr, GT_("Bad certificate: Subject CommonName too long!\n")); @@ -148,9 +153,9 @@ Index: socket.c * first find a match among alternative names */ gens = (STACK_OF(GENERAL_NAME) *)X509_get_ext_d2i(x509_cert, NID_subject_alt_name, NULL, NULL); if (gens) { -- int i, r; -- for (i = 0, r = sk_GENERAL_NAME_num(gens); i < r; ++i) { -- const GENERAL_NAME *gn = sk_GENERAL_NAME_value(gens, i); +- - int i, r; +- - for (i = 0, r = sk_GENERAL_NAME_num(gens); i < r; ++i) { +- - const GENERAL_NAME *gn = sk_GENERAL_NAME_value(gens, i); + int j, r; + for (j = 0, r = sk_GENERAL_NAME_num(gens); j < r; ++j) { + const GENERAL_NAME *gn = sk_GENERAL_NAME_value(gens, j); @@ -168,3 +173,10 @@ Index: socket.c report(stderr, "Subject Alternative Name: %s\n", p1); END OF fetchmail-SA-2009-01.txt +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v1.4.11 (GNU/Linux) + +iEYEARECAAYFAk9/Yg4ACgkQvmGDOQUufZUQ7ACgheMkM4k7NLg6cz8ys3jk9C/P +uxgAnRzc38wIDR+8Pio9CmDLheOcuskK +=OYqf +-----END PGP SIGNATURE-----