CVSROOT: /cvs Module name: src Changes by: [email protected] 2026/05/09 08:16:37
Modified files:
usr.bin/openssl: s_client.c
Log message:
openssl s_client: avoid two out of bounds writes
A NUL termination after an unchecked BIO_read() call in XMSS mode could
lead to a write one byte before the start of sbuf or one past its end.
Add an error check to avoid the former and read one byte less to avoid the
latter.
Found by Frank Denis
