libssh2: make the md5 comparison fail if wrong length (4aeaae31) · Commits · gitlab-org / build / omnibus-mirror / curl

Unverified Commit 4aeaae31 authored 3 years ago by

Daniel Stenberg

libssh2: make the md5 comparison fail if wrong length

Making it just skip the check unless exactly 32 is too brittle. Even if
the docs says it needs to be exactly 32, it is be safer to make the
comparison fail here instead.

Reported-by: Harry Sintonen
Bug: https://hackerone.com/reports/1549461
Closes #8745

parent 4ec0549c

Hide whitespace changes

Inline Side-by-side

Showing with 12 additions and 15 deletions

Please register or to comment