projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c31dbed) | patch
Fix a hang with SSL_peek()
authorMatt Caswell <matt@openssl.org>
Sat, 10 Sep 2016 20:24:40 +0000 (21:24 +0100)
committerMatt Caswell <matt@openssl.org>
Thu, 22 Sep 2016 08:27:45 +0000 (09:27 +0100)
commitb8d243956296458d1782af0d6e7ecfe6deae038a
treed872fe2875ea7456e3aba9fda73f660199209c45tree | snapshot
parentc31dbed70c0be1578276367a1ba420ac935d0c68commit | diff
Fix a hang with SSL_peek()

If while calling SSL_peek() we read an empty record then we go into an
infinite loop, continually trying to read data from the empty record and
never making any progress. This could be exploited by a malicious peer in
a Denial Of Service attack.

CVE-2016-6305

GitHub Issue #1563

Reviewed-by: Rich Salz <rsalz@openssl.org>
ssl/record/rec_layer_s3.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.