#3870: openssl 1.1
----------------------+----------------------
Reporter: tamo | Owner: mutt-dev
Type: task | Status: closed
Priority: trivial | Milestone:
Component: build | Version: 1.7.0
Resolution: fixed | Keywords: ssl
----------------------+----------------------
Comment (by vinc17):
OK, so I suppose that LibreSSL (which is a fork of OpenSSL and provides a
backward-compatible library) has the same behavior too. The only thing I
could find is CVE-2015-5334 http://www.securityfocus.com/archive/1/536692
where the null-terminator could be written out-of-bounds in LibreSSL.
Concerning the OpenSSL documentation, I've reported a bug there:
https://github.com/openssl/openssl/issues/1978
--
Ticket URL: <https://dev.mutt.org/trac/ticket/3870#comment:9>
Mutt <http://www.mutt.org/>
The Mutt mail user agent
