projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f0fa5c8) | patch
More ssl_session_dup fixes
authorMatt Caswell <matt@openssl.org>
Thu, 11 Jun 2015 00:30:06 +0000 (01:30 +0100)
committerMatt Caswell <matt@openssl.org>
Thu, 11 Jun 2015 09:00:23 +0000 (10:00 +0100)
commit708cf593587e2fda67dae9782991ff9fccc781eb
tree43d78f4208c8bf02a2e1db6d71b1e526e50a8524tree | snapshot
parentf0fa5c8306236ce742168d664d53b1551649a47bcommit | diff
More ssl_session_dup fixes

Fix error handling in ssl_session_dup, as well as incorrect setting up of
the session ticket. Follow on from CVE-2015-1791.

Thanks to LibreSSL project for reporting these issues.

Reviewed-by: Tim Hudson <tjh@openssl.org>
ssl/ssl_sess.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.