The security flaw is inside a library that has been released under a bsd style l... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		pilif on Feb 25, 2014 \| parent \| context \| favorite \| on: Has goto fail been fixed yet? The security flaw is inside a library that has been released under a bsd style license (otherwise, the "goto fail;" hilarity would never have ensued). You're free to download the source of the 10.9 library, patch it, compile it and replace the vulnerable binary with the one you fixed.

makomk on Feb 25, 2014 [–]

Apparently someone tried it and the publicly-available source is incomplete and doesn't build.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact