Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.


#850 Wildcard cert name checking and null termination

SSL/TLS (29)
Scott Cantor

There's a new wildcard cert attack made public here:

I took a pass over the name matching code, and unless something in openssl or the code that gets at the subject names is somehow immune, the matching logic seems to be vulnerable. If not, feel free to close.

If a fix is needed, I think it will require capturing the actual length of the subject name to match with rather than relying on null terminated strings. I couldn't actually follow the current code very well, so I'm going to keep looking at it.


  • Thanks for the report, this problem is now fixed in CVS!

    • status: open --> closed-fixed