projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1fe8304) | patch
Premaster secret handling fixes
authorAdam Langley <agl@chromium.org>
Tue, 16 Dec 2014 13:03:47 +0000 (14:03 +0100)
committerEmilia Kasper <emilia@openssl.org>
Wed, 17 Dec 2014 13:04:04 +0000 (14:04 +0100)
commitdc1e4938083e7c50b27a96412db9dd834737cb8b
tree2af74c5d08406dad75b508108df4386d9e0a2dcdtree | snapshot
parent1fe8304db04e581037778c4389fd1c731538f368commit | diff
Premaster secret handling fixes

From BoringSSL
- Send an alert when the client key exchange isn't correctly formatted.
- Reject overly short RSA ciphertexts to avoid a (benign) out-of-bounds memory access.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>
(cherry picked from commit 4aecfd4d9f366c849c9627ab666d1b1addc024e6)
ssl/s3_srvr.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.