projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c35e138) | patch
More ssl_session_dup fixes
authorMatt Caswell <matt@openssl.org>
Thu, 11 Jun 2015 00:30:06 +0000 (01:30 +0100)
committerMatt Caswell <matt@openssl.org>
Thu, 11 Jun 2015 09:04:00 +0000 (10:04 +0100)
commitd44f89c990b4c9c41f77e9a0ffd5dc7c4ca07f84
treedea6015c44b06d40801e2c19154744ab7f6e42a2tree | snapshot
parentc35e138a58a90bc302679dbaa0f5eaf8b28ac35acommit | diff
More ssl_session_dup fixes

Fix error handling in ssl_session_dup, as well as incorrect setting up of
the session ticket. Follow on from CVE-2015-1791.

Thanks to LibreSSL project for reporting these issues.

Conflicts:
ssl/ssl_sess.c

Reviewed-by: Tim Hudson <tjh@openssl.org>
ssl/ssl_sess.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.