commit 6059886d569618c6ed24a7d03d6e29ae5dbebe55
Author: Christos Tsantilas <christos@chtsanti.net>
Date:   2019-08-09 04:18:37 +0000

    Fix parsing of certificate validator responses (#452)
    
    If a certificate validator did not end its response with an end-of-line
    or whitespace character, then Squid, while parsing the response,
    accessed the bytes after the end of the buffer where the response is
    stored.
    
    This is a Measurement Factory project.

diff --git a/src/ssl/cert_validate_message.cc b/src/ssl/cert_validate_message.cc
index f5bd8f4..cabe62d 100644
--- a/src/ssl/cert_validate_message.cc
+++ b/src/ssl/cert_validate_message.cc
@@ -149,7 +149,7 @@ Ssl::CertValidationMsg::parseResponse(CertValidationResponse &resp, STACK_OF(X50
             return false;
         }
 
-        param = value + value_len +1;
+        param = value + value_len;
     }
 
     /*Run through parsed errors to check for errors*/