Forum List Message List New Topic Print View

itpp2012

March 23, 2020 07:41AM

Admin
Registered: 11 years ago
Posts: 1,297

It doesn't and there are a few more for which this doesn't work either, it needs a lot more work and testing.
I had a new concept patch but today decided to roll back to 1.1.1d and back port 1.1.1e (de) patches only.
Only NGX_ERROR mitigates a truncation attack, not NGX_DONE (which is open for debate).

---
nginx for Windows http://nginx-win.ecsds.eu/

Reply Quote

RSS

Subject	Author	Posted
openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	itpp2012	March 18, 2020 07:17AM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	J.R.	March 18, 2020 09:32AM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	itpp2012	March 18, 2020 09:52AM
RE: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	Reinis Rozitis	March 19, 2020 05:54PM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	Sergey Kandaurov	March 20, 2020 03:42AM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	Maxim Dounin	March 20, 2020 09:00AM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	itpp2012	March 20, 2020 09:54AM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	Maxim Dounin	March 20, 2020 06:14PM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	itpp2012	March 21, 2020 04:49PM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	itpp2012	March 22, 2020 02:39PM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	Sergey Kandaurov	March 23, 2020 07:06AM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	itpp2012	March 23, 2020 07:41AM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	Maxim Dounin	March 23, 2020 08:36AM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	Thomas Stephen Lee	April 02, 2020 01:46AM
Re: openssl 1.1.1e 14095126:SSL routines:ssl3_read_n	itpp2012	April 02, 2020 03:24AM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

tanash299

Guests: 131

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018