[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [gnutls-dev] more than one trusted certificate - buffer overflow
From: |
Nikos Mavrogiannopoulos |
Subject: |
Re: [gnutls-dev] more than one trusted certificate - buffer overflow |
Date: |
Wed, 1 Feb 2006 17:36:12 +0100 |
User-agent: |
KMail/1.8.3 |
On Wednesday 01 February 2006 14:38, Max Kellermann wrote:
> You might need a lot of fantasy to imagine a remote exploit for this
> buffer overflow, but the fact that this bug exists, shows that nobody
> has ever tried to load more than one trusted certificate into
> libgnutls...
That's not true :) The most uses of gnutls use the _file() function
which uses the pem parser. That one seems to work.
--
Nikos Mavrogiannopoulos