projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 047cdde) | patch
Check for ClientHello message overruns
authorMatt Caswell <matt@openssl.org>
Fri, 10 Apr 2015 16:25:27 +0000 (17:25 +0100)
committerMatt Caswell <matt@openssl.org>
Tue, 14 Apr 2015 13:50:20 +0000 (14:50 +0100)
commit89c2720298f875ac80777da2da88a64859775898
tree04143572493bf6de9fdd9a62e17a4476c15bf03etree | snapshot
parent047cdde7a5a873817ae1aa4205390b2b130eb173commit | diff
Check for ClientHello message overruns

The ClientHello processing is insufficiently rigorous in its checks to make
sure that we don't read past the end of the message. This does not have
security implications due to the size of the underlying buffer - but still
needs to be fixed.

With thanks to Qinghao Tang for reporting this issue.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(cherry picked from commit c9642eb1ff79a30e2c7632ef8267cc34cc2b0d79)
ssl/s3_srvr.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.