diff options
author | Thomas Vegas <> | 2019-08-31 17:30:51 +0200 |
---|---|---|
committer | Daniel Stenberg <daniel@haxx.se> | 2019-09-09 08:14:34 +0200 |
commit | facb0e4662415b5f28163e853dc6742ac5fafb3d (patch) | |
tree | 5ecad0420a09cb3ca331b2d9a5199c983c85db15 /lib/vtls/schannel.c | |
parent | 82f3ba3806a34fe94dcf9e5c9b88deda6679ca1b (diff) |
tftp: Alloc maximum blksize, and use default unless OACK is received
Fixes potential buffer overflow from 'recvfrom()', should the server
return an OACK without blksize.
Bug: https://curl.haxx.se/docs/CVE-2019-5482.html
CVE-2019-5482
Diffstat (limited to 'lib/vtls/schannel.c')
0 files changed, 0 insertions, 0 deletions