Now
netbsd-5 commitmail json YAML
src/crypto/dist/openssl/ssl/s3_enc.c@1.1.1.12.4.1
/
diff
/
nxr@1.1.1.12.4.1
src/crypto/dist/openssl/ssl/s3_srvr.c@1.15.4.3 / diff / nxr@1.15.4.3
src/crypto/dist/openssl/ssl/t1_enc.c@1.1.1.12.4.1 / diff / nxr@1.1.1.12.4.1
src/crypto/dist/openssl/ssl/s3_srvr.c@1.15.4.3 / diff / nxr@1.15.4.3
src/crypto/dist/openssl/ssl/t1_enc.c@1.1.1.12.4.1 / diff / nxr@1.1.1.12.4.1
Pull up following revision(s) (requested by bouyer in ticket #1365):
crypto/external/bsd/openssl/dist/ssl/s3_enc.c: revision 1.2 via patch
crypto/external/bsd/openssl/dist/ssl/s3_srvr.c: revision 1.5 via patch
crypto/external/bsd/openssl/dist/ssl/t1_enc.c: revision 1.2 via patch
Fix crash in openssl (I suspect caused by malformed packets):
handshake_dgst[] may be used without being allocated, causing NULL
pointer dereference.
Fix by checking that handshake_dgst is not NULL before use.
Reported to openssl as ticket openssl.org #2214.
Fix tested on netbsd-5 by Luke Mewburn with apache, and by me with
freeradius (fixing segmentation fault in both cases).
crypto/external/bsd/openssl/dist/ssl/s3_enc.c: revision 1.2 via patch
crypto/external/bsd/openssl/dist/ssl/s3_srvr.c: revision 1.5 via patch
crypto/external/bsd/openssl/dist/ssl/t1_enc.c: revision 1.2 via patch
Fix crash in openssl (I suspect caused by malformed packets):
handshake_dgst[] may be used without being allocated, causing NULL
pointer dereference.
Fix by checking that handshake_dgst is not NULL before use.
Reported to openssl as ticket openssl.org #2214.
Fix tested on netbsd-5 by Luke Mewburn with apache, and by me with
freeradius (fixing segmentation fault in both cases).