From 2217e86cd0f0cdd5afa94b88d0c4476855197ef2 Mon Sep 17 00:00:00 2001 From: Andy Polyakov Date: Sun, 18 Jan 2004 16:56:57 +0000 Subject: [PATCH] Buffer overrun in e_rc4.c was fixed in Nov 2002 in HEAD and 0_9_7 branches, but never made to 0_9_6... PR: 811 --- crypto/evp/e_rc4.c | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/crypto/evp/e_rc4.c b/crypto/evp/e_rc4.c index 1c1e3b3857..48f60e6231 100644 --- a/crypto/evp/e_rc4.c +++ b/crypto/evp/e_rc4.c @@ -110,9 +110,8 @@ EVP_CIPHER *EVP_rc4_40(void) static int rc4_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, const unsigned char *iv, int enc) { - memcpy(&(ctx->c.rc4.key[0]),key,EVP_CIPHER_CTX_key_length(ctx)); RC4_set_key(&(ctx->c.rc4.ks),EVP_CIPHER_CTX_key_length(ctx), - ctx->c.rc4.key); + key); return 1; }