tor/changes/bug17404

  o Major bugfixes (security, correctness):
    - Fix a programming error that could cause us to read 4 bytes before
      the beginning of an openssl string. This could be used to provoke
      a crash on systems with an unusual malloc implementation, or
      systems with unsual hardening installed. Fixes bug 17404; bugfix
      on 0.2.3.6-alpha.
Check for len < 4 in dn_indicates_v3_cert Without this check, we potentially look up to 3 characters before the start of a malloc'd segment, which could provoke a crash under certain (weird afaik) circumstances. Fixes 17404; bugfix on 0.2.6.3-alpha. 2015-10-21 17:44:43 +02:00			`o Major bugfixes (security, correctness):`
			`- Fix a programming error that could cause us to read 4 bytes before`
			`the beginning of an openssl string. This could be used to provoke`
			`a crash on systems with an unusual malloc implementation, or`
			`systems with unsual hardening installed. Fixes bug 17404; bugfix`
			`on 0.2.3.6-alpha.`