wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/ssl
History
Gabor Tyukasz 03a12c1330 Fix race condition in ssl_parse_serverhello_tlsext 
CVE-2014-3509
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
2014-08-06 21:30:39 +01:00
..
.cvsignore
bio_ssl.c OPENSSL_NO_SOCK fixes [from HEAD]. 2012-04-16 17:43:28 +00:00
d1_both.c Remove some duplicate DTLS code. 2014-08-06 21:30:39 +01:00
d1_clnt.c Fix DTLS anonymous EC(DH) denial of service 2014-08-06 21:30:39 +01:00
d1_enc.c Update DTLS code to match CBC decoding in TLS. 2013-02-05 16:46:17 +00:00
d1_lib.c Free up s->d1->buffered_app_data.q properly. 2014-06-02 14:40:32 +01:00
d1_meth.c
d1_pkt.c Added SSLErr call for internal error in dtls1_buffer_record 2014-06-01 21:43:51 +01:00
d1_srvr.c Fix DTLS certificate requesting code. 2014-07-15 18:23:52 +01:00
dtls1.h PR: 2230 2010-04-14 00:17:29 +00:00
install-ssl.com Apply all the changes submitted by Steven M. Schweda <sms@antinode.info> 2011-03-19 09:44:53 +00:00
kssl.c Submitted by: Tomas Hoger <thoger@redhat.com> 2010-03-03 15:41:00 +00:00
kssl.h Fix for WIN32 builds with KRB5 2014-02-26 15:33:31 +00:00
kssl_lcl.h Some fixes for kerberos builds. 2009-04-21 22:20:12 +00:00
Makefile make update 2013-02-05 16:46:21 +00:00
s2_clnt.c Add and use a constant-time memcmp. 2013-02-05 16:46:15 +00:00
s2_enc.c Update ssl library to support EVP_PKEY MAC API. Include generic MAC support. 2007-06-04 17:04:40 +00:00
s2_lib.c Update strength_bits for 3DES. 2014-06-09 12:09:47 +01:00
s2_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s2_pkt.c Add and use a constant-time memcmp. 2013-02-05 16:46:15 +00:00
s2_srvr.c Assorted bugfixes: 2011-02-03 12:04:40 +00:00
s3_both.c Add and use a constant-time memcmp. 2013-02-05 16:46:15 +00:00
s3_cbc.c Check DTLS_BAD_VER for version number. 2013-02-12 15:09:44 +00:00
s3_clnt.c Fix DTLS anonymous EC(DH) denial of service 2014-08-06 21:30:39 +01:00
s3_enc.c Fixed incorrect return code handling in ssl3_final_finish_mac. 2014-06-13 15:56:19 +01:00
s3_lib.c Update strength_bits for 3DES. 2014-06-09 12:09:47 +01:00
s3_meth.c Type-checked (and modern C compliant) OBJ_bsearch. 2008-10-12 14:32:47 +00:00
s3_pkt.c Remove redundant check. 2014-06-27 23:18:25 +01:00
s3_srvr.c Don't limit message sizes in ssl3_get_cert_verify. 2014-07-05 13:31:53 +01:00
s23_clnt.c PR: 2171 2010-02-16 14:20:40 +00:00
s23_lib.c Don't advertise ECC ciphersuits in SSLv2 compatible client hello. 2014-06-27 16:52:10 +01:00
s23_meth.c
s23_pkt.c
s23_srvr.c Fix protocol downgrade bug in case of fragmented packets 2014-08-06 21:30:39 +01:00
ssl-lib.com VMS fixes 2014-01-11 22:42:15 +00:00
ssl.h typo 2014-03-10 15:49:35 +00:00
ssl2.h
ssl3.h Fix for CVE-2014-0224 2014-06-03 16:30:37 +01:00
ssl23.h
ssl_algs.c Fixups from previous commit. 2013-02-05 16:46:17 +00:00
ssl_asn1.c fix coverity issue 966597 - error line is not always initialised 2014-05-08 00:04:16 +01:00
ssl_cert.c PR: 1731 and maybe 2197 2010-03-24 23:16:49 +00:00
ssl_ciph.c Use more common name for GOST key exchange. 2014-07-14 18:31:54 +01:00
ssl_err.c Fix error codes. 2013-02-05 16:46:19 +00:00
ssl_err2.c
ssl_lib.c Check sk_SSL_CIPHER_num() after assigning sk. 2014-05-12 23:05:19 +01:00
ssl_locl.h Fix DTLS retransmission from previous session. 2013-12-20 23:20:24 +00:00
ssl_rsa.c PR: 1411 2009-09-12 23:09:26 +00:00
ssl_sess.c PR: 2160 2010-02-01 16:49:42 +00:00
ssl_stat.c Don't disable state strings with no-ssl2 2014-06-28 00:56:59 +01:00
ssl_task.c
ssl_txt.c Update from 0.9.8-stable. 2009-06-30 22:26:28 +00:00
ssltest.c Fix in ssltest is no-ssl2 configured 2013-02-11 18:27:06 +00:00
t1_clnt.c
t1_enc.c Fix for non compilation with TLS_DEBUG defined 2014-05-24 23:59:24 +01:00
t1_lib.c Fix race condition in ssl_parse_serverhello_tlsext 2014-08-06 21:30:39 +01:00
t1_meth.c
t1_reneg.c Update RI to match latest spec. 2009-12-27 22:59:09 +00:00
t1_srvr.c
tls1.h Backport TLS 1.1/1.2 #defines 2013-09-09 21:08:17 +01:00