See https://dxr.mozilla.org/mozilla-central/rev/04b8c412d9f58fb6194c58dcaa66bf278bbd53cf/security/pkix/lib/pkixcert.cpp?offset=200#160 The "id_pk_serverAuth" should be "id_kp_serverAuth".
3 years ago
2 years ago
Priority: -- → P5
I would like to take this over . I am a newbie?
(In reply to manikishanghantasala from comment #1) > I would like to take this over . I am a newbie.
[Security approval request comment] How easily could an exploit be constructed based on the patch? Do comments in the patch, the check-in comment, or tests included in the patch paint a bulls-eye on the security problem? Which older supported branches are affected by this flaw? If not all supported branches, which bug introduced the flaw? Do you have backports for the affected branches? If not, how different, hard to create, and risky will they be? How likely is this patch to cause regressions; how much testing does it need?
Comment on attachment 8933903 [details] bug-1198481 Settings sec-approval? on an unrated, public, non-security bug without answering any of the template questions isn't very useful.
sorry I am new to this can you please help me explaining what should be done?
(In reply to manikishanghantasala from comment #5) > sorry I am new to this can you please help me explaining what should be done? Please don't change any further bug flags :) The patch you uploaded is empty. When you have a new version ready, please upload it as type "patch" and ask for review? from :keeler. Then we can assign this one to you.
Assignee: nobody → manikishanghantasala
Status: NEW → ASSIGNED
Comment on attachment 8934115 [details] [diff] [review] Bug-1198481.patch Review of attachment 8934115 [details] [diff] [review]: ----------------------------------------------------------------- Great - thanks! Normally the next step would be to run this through try, but since this is a comment-only change, we can mark it `checkin-needed` directly.
Attachment #8934115 - Flags: review?(dkeeler) → review+
a year ago
Priority: P5 → P1
Whiteboard: [psm-cleanup] → [psm-assigned]
Pushed by firstname.lastname@example.org: https://hg.mozilla.org/integration/mozilla-inbound/rev/8577d0b83990 Fixed typo 'id_pk_serverAuth' to 'id_kp_serverAuth'. r=keeler
You need to log in before you can comment on or make changes to this bug.