openssl

History

Matt Caswell 5d28381ae4 Fix ssl_get_prev_session overrun If OpenSSL is configured with no-tlsext then ssl_get_prev_session can read past the end of the ClientHello message if the session_id length in the ClientHello is invalid. This should not cause any security issues since the underlying buffer is 16k in size. It should never be possible to overrun by that many bytes. This is probably made redundant by the previous commit - but you can never be too careful. With thanks to Qinghao Tang for reporting this issue. Reviewed-by: Rich Salz <rsalz@openssl.org> (cherry picked from commit `5e0a80c1c9`) Conflicts: ssl/ssl_sess.c		2015-04-14 15:02:44 +01:00
..
.cvsignore	Add emacs cache files to .cvsignore.	2005-04-11 14:17:07 +00:00
bio_ssl.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
d1_both.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
d1_clnt.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
d1_enc.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
d1_lib.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
d1_meth.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
d1_pkt.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
d1_srvr.c	Rerun util/openssl-format-source -v -c .	2015-01-22 09:53:02 +00:00
dtls1.h	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
install.com	Functional VMS changes submitted by sms@antinode.info (Steven M. Schweda).	2009-05-15 16:37:29 +00:00
kssl.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
kssl.h	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
kssl_lcl.h	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
Makefile	RT3067: simplify patch	2014-09-24 16:01:46 +02:00
s2_clnt.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s2_enc.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s2_lib.c	Fix reachable assert in SSLv2 servers.	2015-03-19 13:00:45 +00:00
s2_meth.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s2_pkt.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
s2_srvr.c	Fix unsigned/signed warnings	2015-03-19 13:00:45 +00:00
s3_both.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s3_cbc.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s3_clnt.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
s3_enc.c	Cleanse buffers	2015-03-11 10:57:14 +00:00
s3_lib.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s3_meth.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s3_pkt.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
s3_srvr.c	Check for ClientHello message overruns	2015-04-14 14:53:58 +01:00
s23_clnt.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s23_lib.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s23_meth.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s23_pkt.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
s23_srvr.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
ssl-lib.com	VMS build fix	2015-03-19 13:00:45 +00:00
ssl.h	Disable export and SSLv2 ciphers by default	2015-03-14 18:46:31 +01:00
ssl2.h	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl3.h	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl23.h	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl_algs.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl_asn1.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl_cert.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl_ciph.c	Disable export and SSLv2 ciphers by default	2015-03-14 18:46:31 +01:00
ssl_err.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl_err2.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl_lib.c	Disable export and SSLv2 ciphers by default	2015-03-14 18:46:31 +01:00
ssl_locl.h	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl_rsa.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl_sess.c	Fix ssl_get_prev_session overrun	2015-04-14 15:02:44 +01:00
ssl_stat.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssl_task.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
ssl_txt.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
ssltest.c	Fix error handling in ssltest	2015-02-06 10:15:22 +00:00
t1_clnt.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
t1_enc.c	Cleanse buffers	2015-03-11 10:57:14 +00:00
t1_lib.c	Re-align some comments after running the reformat script.	2015-01-22 09:53:07 +00:00
t1_meth.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
t1_reneg.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
t1_srvr.c	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00
tls1.h	Run util/openssl-format-source -v -c .	2015-01-22 09:52:55 +00:00