Check the CVE ID, not the name

author Adam Bishop <adam@omega.org.uk>

Mon, 26 Sep 2016 14:52:02 +0000 (15:52 +0100)

committer Adam Bishop <adam@omega.org.uk>

Mon, 26 Sep 2016 14:52:02 +0000 (15:52 +0100)
author Adam Bishop <adam@omega.org.uk>
Mon, 26 Sep 2016 14:52:02 +0000 (15:52 +0100)
committer Adam Bishop <adam@omega.org.uk>
Mon, 26 Sep 2016 14:52:02 +0000 (15:52 +0100)
diff --git a/src/main/tls.c b/src/main/tls.c

index a1d95aa..d3c3810 100644 (file)
--- a/src/main/tls.c
+++ b/src/main/tls.c
@@ -2483,7 +2483,7 @@ int tls_global_version_check(char const *acknowledged)
                         /*
                          *      If the CVE is acknowledged, allow it.
                          */
-                       if (strcmp(acknowledged, defect->name) == 0) return 0;
+                       if (strcmp(acknowledged, defect->id) == 0) return 0;
  
                         ERROR("Refusing to start with libssl version %s (in range %s)",
                               ssl_version(), ssl_version_range(defect->low, defect->high));
author	Adam Bishop <adam@omega.org.uk>
	Mon, 26 Sep 2016 14:52:02 +0000 (15:52 +0100)
committer	Adam Bishop <adam@omega.org.uk>
	Mon, 26 Sep 2016 14:52:02 +0000 (15:52 +0100)