projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fb0a59c) | patch
Don't crash when processing a zero-length, TLS >= 1.1 record.
authorBen Laurie <ben@links.org>
Mon, 28 Jan 2013 17:33:18 +0000 (17:33 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Wed, 6 Feb 2013 13:56:13 +0000 (13:56 +0000)
commite0da2c2ed29a3a66c22e6a8a5072b58399835d71
treeff98d5b081657a30e40b857a17809083654f2391tree | snapshot
parentfb0a59cc58e69203b1269d5f1c355f4944a8b350commit | diff
Don't crash when processing a zero-length, TLS >= 1.1 record.

The previous CBC patch was bugged in that there was a path through enc()
in s3_pkt.c/d1_pkt.c which didn't set orig_len. orig_len would be left
at the previous value which could suggest that the packet was a
sufficient length when it wasn't.
(cherry picked from commit 6cb19b7681f600b2f165e4adc57547b097b475fd)
ssl/d1_enc.c diff | blob | history
ssl/d1_pkt.c diff | blob | history
ssl/s3_enc.c diff | blob | history
ssl/s3_pkt.c diff | blob | history
ssl/t1_enc.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.