blob: 412dc5fdf2b220ba17e440d76a216bf04d7ee90a (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
|
$NetBSD: patch-ac,v 1.14.2.2 2010/07/02 09:22:04 spz Exp $
Fix for CVE-2010-2074 taken from here:
http://www.openwall.com/lists/oss-security/2010/06/14/4
--- fm.h.orig 2007-05-30 05:47:24.000000000 +0100
+++ fm.h 2010-07-01 19:26:27.000000000 +0100
@@ -1119,7 +1119,7 @@
#endif
#if defined(USE_SSL) && defined(USE_SSL_VERIFY)
-global int ssl_verify_server init(FALSE);
+global int ssl_verify_server init(TRUE);
global char *ssl_cert_file init(NULL);
global char *ssl_key_file init(NULL);
global char *ssl_ca_path init(NULL);
@@ -1128,7 +1128,7 @@
#endif /* defined(USE_SSL) &&
* defined(USE_SSL_VERIFY) */
#ifdef USE_SSL
-global char *ssl_forbid_method init(NULL);
+global char *ssl_forbid_method init("2");
#endif
global int is_redisplay init(FALSE);
|