artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fca39bf) | patch
Fix CVE-2014-3507, avoid allocating and then leaking a fresh fragment
authorguenther <guenther@openbsd.org>
Fri, 8 Aug 2014 05:06:56 +0000 (05:06 +0000)
committerguenther <guenther@openbsd.org>
Fri, 8 Aug 2014 05:06:56 +0000 (05:06 +0000)
commit1ad69c40f41c48743fc2a936ec067f21604a60b3
tree66e13c5512df09518f2b938b8fe6df7bbb76ceb7tree | snapshot
parentfca39bf77338b32d5264edaa28a2d4ffd38b333fcommit | diff
Fix CVE-2014-3507, avoid allocating and then leaking a fresh fragment
structure when a zero-length fragment is received.

Based on
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=d0a4b7d1a2948fce38515b8d862f43e7ba0ebf74

diff by miod@, ok guenther@ bcook@ deraadt@
lib/libssl/d1_both.c diff | blob | history
lib/libssl/src/ssl/d1_both.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim