projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9104dc4) | patch
Fix reachable assert in SSLv2 servers.
authorEmilia Kasper <emilia@openssl.org>
Wed, 4 Mar 2015 17:05:02 +0000 (09:05 -0800)
committerMatt Caswell <matt@openssl.org>
Thu, 19 Mar 2015 13:00:11 +0000 (13:00 +0000)
commit1a08063abfc8d3527fbdce4c650da65a79035e3d
tree79f5f7ae2766bb3bc3f4eaf8d54c3e5a2c33dd92tree | snapshot
parent9104dc42558665e851e240e4e12030bef459787ccommit | diff
Fix reachable assert in SSLv2 servers.

This assert is reachable for servers that support SSLv2 and export ciphers.
Therefore, such servers can be DoSed by sending a specially crafted
SSLv2 CLIENT-MASTER-KEY.

Also fix s2_srvr.c to error out early if the key lengths are malformed.
These lengths are sent unencrypted, so this does not introduce an oracle.

CVE-2015-0293

This issue was discovered by Sean Burford (Google) and Emilia Käsper of
the OpenSSL development team.

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
ssl/s2_lib.c diff | blob | history
ssl/s2_srvr.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.