Add fix for CVE-2013-4353
(cherry picked from commit 6b42ed4e7104898f4b5b69337589719913b36404)
This commit is contained in:
Dr. Stephen Henson
parent
9bd1e2b54a
commit
8d65fdb62e
1 changed files with 5 additions and 1 deletions
|
|
@ -203,7 +203,11 @@ static void ssl3_take_mac(SSL *s)
|
|||
{
|
||||
const char *sender;
|
||||
int slen;
|
||||
|
||||
/* If no new cipher setup return immediately: other functions will
|
||||
* set the appropriate error.
|
||||
*/
|
||||
if (s->s3->tmp.new_cipher == NULL)
|
||||
return;
|
||||
if (s->state & SSL_ST_CONNECT)
|
||||
{
|
||||
sender=s->method->ssl3_enc->server_finished_label;
|
||||
|
|
|
|||
Loading…
Reference in a new issue