-
These functions return 1 for a successful match, 0 for a failed match, -1 for an internal error, or -2 if the certificate is malformed. OpenConnect has been treating any value other than zero as a success, meaning that an attacker who could get a trusted CA to issue an invalid certificate (on which the ASN.1 decoder fails, for example), could use that to assume *any* identity. This is CVE-2020-12105. openconnect/openconnect!96 Signed-off-by: Jordy Zomer <jordy@simplyhacker.com>
f07242df
To find the state of this project's repository at the time of any of these versions, check out the tags.