]> Pileus Git - ~andy/fetchmail/commit
projects / ~andy / fetchmail / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e4ef077) | patch
Fix CVE-2011-3389 by clearing SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS...
authorMatthias Andree <matthias.andree@gmx.de>
Fri, 6 Apr 2012 19:31:53 +0000 (21:31 +0200)
committerMatthias Andree <matthias.andree@gmx.de>
Thu, 3 May 2012 06:13:13 +0000 (08:13 +0200)
commit48809c5b9f6c9081f4031fa938dd63b060c18a4b
tree3b454a5bcdaa175b2b8b2b3c455b9a3e7336e8aftree | snapshot
parente4ef077fdad22286502ae485b7b8f7ca88fd49ddcommit | diff
Fix CVE-2011-3389 by clearing SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS...

...from SSL options, unless FETCHMAIL_DISABLE_CBC_IV_COUNTERMEASURE
is a non-empty environment variable.

Suggested by Apple.
NEWS diff | blob | history
fetchmail.man diff | blob | history
socket.c diff | blob | history
Andy's fetchmail repository