15 Nov
2010
15 Nov
'10
11:40 a.m.
rmeggins@redhat.com wrote:
Full_Name: Rich Megginson Version: 2.4.23 (current CVS HEAD) OS: RHEL5 URL: ftp://ftp.openldap.org/incoming/openldap-2.4.23-reject_non_file_key_cert_pem_files-20101111.patch Submission from: (NULL) (76.113.111.209)
If you specify a directory instead of a file to TLS_CACERT, or if one of the items in the TLS_CACERTDIR is a directory, the NSS PEM reader will crash. This patch rejects any item which looks like a directory.
It sounds like this is a bug that ought to be patched in the NSS PEM reader instead, no?
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/
5121
Age (days ago)
5121
Last active (days ago)
0 comments
1 participants
participants (1)
-
hyc@symas.com