Overview

File CVE-2017-2801.patch of Package Botan.4627

commit c927101675e5f63fc0bdd93c5a4825adc54323b4
Author: Jack Lloyd <jack@randombit.net>
Date:   Tue Apr 4 16:18:27 2017 -0400

    Add fix for CVE-2017-2801

diff --git a/src/utils/parsing.cpp b/src/utils/parsing.cpp
index 9ec00040c..fc7e96328 100644
--- a/src/utils/parsing.cpp
+++ b/src/utils/parsing.cpp
@@ -230,6 +230,8 @@ bool x500_name_cmp(const std::string& name1, const std::string& name2)
 
          if(p1 == name1.end() && p2 == name2.end())
             return true;
+         if(p1 == name1.end() || p2 == name2.end())
+            return false;
          }
 
       if(!Charset::caseless_cmp(*p1, *p2))
openSUSE Build Service is sponsored by
Places