projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f3b355f) | patch
More ssl_session_dup fixes
authorMatt Caswell <matt@openssl.org>
Thu, 11 Jun 2015 00:30:06 +0000 (01:30 +0100)
committerMatt Caswell <matt@openssl.org>
Thu, 11 Jun 2015 09:08:18 +0000 (10:08 +0100)
commit907f04a30354615e54beaa2bc0b986083f7793ee
treedc3a130b6031ffbe256187e7a1416c9182edababtree | snapshot
parentf3b355fec3b38e9f345a226d7defab146f446100commit | diff
More ssl_session_dup fixes

Fix error handling in ssl_session_dup, as well as incorrect setting up of
the session ticket. Follow on from CVE-2015-1791.

Thanks to LibreSSL project for reporting these issues.

Conflicts:
ssl/ssl_sess.c

Reviewed-by: Tim Hudson <tjh@openssl.org>
ssl/ssl_sess.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.