projects
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
75862f7
)
Add sanity check to ssl_get_prev_session
author
Matt Caswell
<matt@openssl.org>
Tue, 28 Apr 2015 14:28:23 +0000
(15:28 +0100)
committer
Matt Caswell
<matt@openssl.org>
Thu, 30 Apr 2015 22:21:53 +0000
(23:21 +0100)
Sanity check the |len| parameter to ensure it is positive. Thanks to Kevin
Wojtysiak (Int3 Solutions) and Paramjot Oberoi (Int3 Solutions) for
reporting this issue.
Reviewed-by: Andy Polyakov <appro@openssl.org>
(cherry picked from commit
cb0f400b0cea2d2943f99b1e89c04ff6ed748cd5
)
ssl/ssl_sess.c
patch
|
blob
|
history
diff --git
a/ssl/ssl_sess.c
b/ssl/ssl_sess.c
index dce90887bbd68376c814ad8075eca44cba0502ee..8b9945b475703dd261cb2ed2e20f1ba3df9033c8 100644
(file)
--- a/
ssl/ssl_sess.c
+++ b/
ssl/ssl_sess.c
@@
-449,7
+449,7
@@
int ssl_get_prev_session(SSL *s, unsigned char *session_id, int len,
int r;
#endif
- if (len > SSL_MAX_SSL_SESSION_ID_LENGTH)
+ if (len
< 0 || len
> SSL_MAX_SSL_SESSION_ID_LENGTH)
goto err;
if (session_id + len > limit) {
projects / openssl.git / commitdiff