[Issue 10326] SNI passing requirements differ across TLS implementations

15 Apr 2025


      https://bugs.openldap.org/show_bug.cgi?id=10326
--- Comment #1 from Howard Chu hyc@openldap.org ---
From what I've read here https://nvd.nist.gov/vuln/detail/CVE-2025-27809 and
the discussion in the mbedtls issue
https://github.com/Mbed-TLS/mbedtls/issues/466 this isn't really a security
concern for OpenLDAP since we always use our own hostname checking code anyway.
https://git.openldap.org/openldap/openldap/-/blob/master/libraries/libldap/t...
What fails in test067?
-- 
You are receiving this mail because:
You are on the CC list for the issue.

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[Issue 10326] SNI passing requirements differ across TLS implementations