mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-04-18 20:40:45 +08:00
Code Issues Packages Projects Releases Wiki Activity
openssl/ssl
History
Matt Caswell bfb8128190 Set rl->packet to NULL after we've finished using it 
In order to ensure we do not have a UAF we reset the rl->packet pointer
to NULL after we free it.

Follow on from CVE-2024-4741

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24395)
2024-05-28 13:28:13 +01:00
..
quic
QUIC TXP: Fix reserve calculations for PING frames
2024-04-18 17:42:26 +02:00
record
Set rl->packet to NULL after we've finished using it
2024-05-28 13:28:13 +01:00
rio
QUIC POLLING: Support no-quic builds
2024-02-10 11:37:14 +00:00
statem
Move stack of compression methods from libssl to OSSL_LIB_CTX
2024-05-28 08:56:13 +02:00
bio_ssl.c
Copyright year updates
2024-04-09 13:43:26 +02:00
build.info
QUIC RIO: Add frontend SSL_poll implementation
2024-02-10 11:37:14 +00:00
d1_lib.c
Remove SSL_ENC_FLAG_EXPLICIT_IV which is only set and never read.
2024-05-14 15:34:07 +02:00
d1_msg.c
Copyright year updates
2023-09-07 09:59:15 +01:00
d1_srtp.c
Copyright year updates
2024-04-09 13:43:26 +02:00
event_queue.c
Remove a spurious inclusion of the sparse array header file
2023-09-25 07:45:32 +10:00
methods.c
Update some inclusions of <openssl/macros.h>
2019-11-07 11:37:25 +01:00
pqueue.c
Stop raising ERR_R_MALLOC_FAILURE in most places
2022-10-05 14:02:03 +02:00
priority_queue.c
Fix bug in priority queue remove function
2023-11-08 11:09:12 +00:00
s3_enc.c
Copyright year updates
2024-04-09 13:43:26 +02:00
s3_lib.c
Add support for integrity-only cipher suites for TLS v1.3
2024-05-14 15:39:15 +02:00
s3_msg.c
Resolve a TODO in ssl3_dispatch_alert
2022-11-14 10:14:41 +01:00
ssl_asn1.c
RFC7250 (RPK) support
2023-03-28 13:49:54 -04:00
ssl_cert_comp.c
Copyright year updates
2023-09-07 09:59:15 +01:00
ssl_cert_table.h
Make ssl_cert_info read-only
2023-11-27 07:51:33 +00:00
ssl_cert.c
Make ssl_cert_info read-only
2023-11-27 07:51:33 +00:00
ssl_ciph.c
Move stack of compression methods from libssl to OSSL_LIB_CTX
2024-05-28 08:56:13 +02:00
ssl_conf.c
Copyright year updates
2024-04-09 13:43:26 +02:00
ssl_err_legacy.c
Update copyright year
2021-06-17 13:24:59 +01:00
ssl_err.c
Add reason codes with the correct offset for two alerts
2024-05-14 15:27:17 +02:00
ssl_init.c
Move stack of compression methods from libssl to OSSL_LIB_CTX
2024-05-28 08:56:13 +02:00
ssl_lib.c
Make conf_diagnostics apply also to the SSL conf errors
2024-05-09 09:20:25 +02:00
ssl_local.h
Move stack of compression methods from libssl to OSSL_LIB_CTX
2024-05-28 08:56:13 +02:00
ssl_mcnf.c
Set SSL_CONF_FLAG_SHOW_ERRORS when conf_diagnostics is enabled
2024-05-09 09:20:58 +02:00
ssl_rsa_legacy.c
Deprecate RSA harder
2020-11-18 23:38:34 +01:00
ssl_rsa.c
Copyright year updates
2023-09-07 09:59:15 +01:00
ssl_sess.c
Typo fixes
2024-05-13 11:10:35 +02:00
ssl_stat.c
SSL_alert_desc_string_long(): Delete unnecessary underline
2024-04-04 08:33:21 +02:00
ssl_txt.c
Move stack of compression methods from libssl to OSSL_LIB_CTX
2024-05-28 08:56:13 +02:00
ssl_utst.c
Remove the old buffer management code
2022-10-20 14:39:33 +01:00
sslerr.h
QUIC APL: Implement optimised FIN API
2024-01-23 14:20:06 +00:00
t1_enc.c
Copyright year updates
2024-04-09 13:43:26 +02:00
t1_lib.c
Remove SSL_ENC_FLAG_EXPLICIT_IV which is only set and never read.
2024-05-14 15:34:07 +02:00
t1_trce.c
Add support for integrity-only cipher suites for TLS v1.3
2024-05-14 15:39:15 +02:00
tls13_enc.c
Add support for integrity-only cipher suites for TLS v1.3
2024-05-14 15:39:15 +02:00
tls_depr.c
SSL object refactoring using SSL_CONNECTION object
2022-07-28 10:04:28 +01:00
tls_srp.c
Stop raising ERR_R_MALLOC_FAILURE in most places
2022-10-05 14:02:03 +02:00