rpms/openssl
3
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
2c01b19843
openssl/openssl-0.9.8g-cve-2008-0891.patch
Tomáš Mráz 2c01b19843 - fix CVE-2008-0891 - server name extension crash (#448492) 
- fix CVE-2008-1672 - server key exchange message omit crash (#448495)
2008-05-28 15:52:21 +00:00

18 lines
719 B
Diff
Raw Blame History

*) Fix double free in TLS server name extensions which could lead to a remote
crash found by Codenomicon TLS test suite (CVE-2008-0891) [Joe Orton]
Index: ssl/t1_lib.c
===================================================================
RCS file: /e/openssl/cvs/openssl/ssl/t1_lib.c,v
retrieving revision 1.13.2.8
diff -u -r1.13.2.8 ssl/t1_lib.c
--- ssl/t1_lib.c 18 Oct 2007 11:39:11 -0000
+++ ssl/t1_lib.c 18 Mar 2008 12:06:58 -0000
@@ -381,6 +381,7 @@
s->session->tlsext_hostname[len]='\0';
if (strlen(s->session->tlsext_hostname) != len) {
OPENSSL_free(s->session->tlsext_hostname);
+ s->session->tlsext_hostname = NULL;
*al = TLS1_AD_UNRECOGNIZED_NAME;
return 0;
}
Reference in New Issue View Git Blame Copy Permalink