projects
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
80d586d
)
Fix Kerberos issue in ssl_session_dup
author
Matt Caswell
<matt@openssl.org>
Wed, 10 Jun 2015 08:32:34 +0000
(09:32 +0100)
committer
Matt Caswell
<matt@openssl.org>
Wed, 10 Jun 2015 08:37:01 +0000
(09:37 +0100)
The fix for CVE-2015-1791 introduced an error in ssl_session_dup for
Kerberos.
Reviewed-by: Tim Hudson <tjh@openssl.org>
ssl/ssl_sess.c
patch
|
blob
|
history
diff --git
a/ssl/ssl_sess.c
b/ssl/ssl_sess.c
index ca5d2d656eae51446fa81971fff1dc58bf5befac..5358f4a93a33f03f6928db12ec919906a94a5f1e 100644
(file)
--- a/
ssl/ssl_sess.c
+++ b/
ssl/ssl_sess.c
@@
-242,7
+242,7
@@
SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket)
memcpy(dest, src, sizeof(*dest));
#ifndef OPENSSL_NO_KRB5
- dest->krb5_client_princ_len =
dest
->krb5_client_princ_len;
+ dest->krb5_client_princ_len =
src
->krb5_client_princ_len;
if (src->krb5_client_princ_len > 0)
memcpy(dest->krb5_client_princ, src->krb5_client_princ,
src->krb5_client_princ_len);
projects / openssl.git / commitdiff