git.librecmc.org Git - oweals/openssl.git/commit

projects / oweals / openssl.git / commit

author	Dr. Stephen Henson <steve@openssl.org>
	Tue, 13 May 2014 17:48:31 +0000 (18:48 +0100)
committer	Dr. Stephen Henson <steve@openssl.org>
	Thu, 5 Jun 2014 12:23:05 +0000 (13:23 +0100)
commit	410e444b71bca5af929fe82162cbe37e31c82083
tree	186ef4e41241fb825e5e96a14a7731f83a190b7c	tree \| snapshot
parent	a91be10833e61bcdc9002de28489405101c52650	commit \| diff

Fix for CVE-2014-0195

A buffer overrun attack can be triggered by sending invalid DTLS fragments
to an OpenSSL DTLS client or server. This is potentially exploitable to
run arbitrary code on a vulnerable client or server.

Fixed by adding consistency check for DTLS fragments.

Thanks to Jüri Aedla for reporting this issue.
(cherry picked from commit 1632ef744872edc2aa2a53d487d3e79c965a4ad3)

ssl/d1_both.c

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom