tnozaki / NetBSD / issues / #345 - [tnozaki-openssl] CVE-2023-0466 Certificate policy check not enabled — Bitbucket

Issue #345 resolved

Takehiko NOZAKI repo owner created an issue 2023-12-14

see https://www.openssl.org/news/secadv/20230328.txt

Comments (2)

Takehiko NOZAKI reporter
- changed status to resolved
done <<cset:83615390d7ab972130858728eeea0348d1b4b692>>
- 2023-12-16T16:09:22+00:00
Takehiko NOZAKI reporter
BUGFIX: Issue ~~#345~~ - CVE-2023-0466 Certificate policy check not enabled

Cherry-picked from: https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=0d16b7e99aafc0b4a6d729eec65a411a7e025f0a

Original commit message: Fix documentation of X509_VERIFY_PARAM_add0_policy()

The function was incorrectly documented as enabling policy checking.

Fixes: CVE-2023-0466

Reviewed-by: Matt Caswell matt@openssl.org Reviewed-by: Paul Dale pauli@openssl.org (Merged from https://github.com/openssl/openssl/pull/20564)

→ <<cset 83615390d7ab>>
- 2023-12-16T16:59:00+00:00
Log in to comment

Assignee: –

Type: bug

Priority: major

Status: resolved

Votes: 0

Watchers: 1