mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-03-01 19:28:10 +08:00
Code Issues Packages Projects Releases Wiki Activity
5e9f0eebcf
openssl/ssl
History
Matt Caswell 5e9f0eebcf Check for ClientHello message overruns 
The ClientHello processing is insufficiently rigorous in its checks to make
sure that we don't read past the end of the message. This does not have
security implications due to the size of the underlying buffer - but still
needs to be fixed.

With thanks to Qinghao Tang for reporting this issue.

Reviewed-by: Rich Salz <rsalz@openssl.org>
2015-04-14 14:58:25 +01:00
..
record Fix read_ahead issue 2015-04-10 16:21:20 +01:00
bio_ssl.c free NULL cleanup 10 2015-04-11 10:22:36 -04:00
d1_both.c Move last_write_sequence from s->d1 to s->rlayer.d. 2015-03-26 15:02:00 +00:00
d1_clnt.c
d1_lib.c Move buffered_app_data from s->d1 to s->rlayer.d 2015-03-26 15:02:00 +00:00
d1_meth.c
d1_msg.c
d1_srtp.c
d1_srvr.c Remove last trace of non-record layer code reading and writing sequence 2015-03-26 15:02:01 +00:00
install-ssl.com Remove SSL_TASK, the DECnet Based SSL Engine - addendum 2015-03-31 22:19:22 +02:00
kssl_lcl.h
kssl.c
Makefile make depend 2015-04-03 18:31:15 +01:00
s3_both.c Move read_sequence and write_sequence from s->s3 to s->rlayer 2015-03-26 15:02:00 +00:00
s3_cbc.c
s3_clnt.c free NULL cleanup 10 2015-04-11 10:22:36 -04:00
s3_enc.c Move ssl3_record_sequence_update into record layer 2015-03-26 15:02:00 +00:00
s3_lib.c Move s->packet and s->packet_length into s->rlayer 2015-03-26 15:02:00 +00:00
s3_meth.c
s3_msg.c
s3_srvr.c Check for ClientHello message overruns 2015-04-14 14:58:25 +01:00
s23_clnt.c Move s->packet and s->packet_length into s->rlayer 2015-03-26 15:02:00 +00:00
s23_lib.c
s23_meth.c
s23_srvr.c Move s->packet and s->packet_length into s->rlayer 2015-03-26 15:02:00 +00:00
ssl_algs.c
ssl_asn1.c The wrong ifdef is used to guard usage of PSK code 2015-04-10 23:52:32 +01:00
ssl_cert.c free NULL cleanup 2015-03-28 10:54:15 -04:00
ssl_ciph.c
ssl_conf.c
ssl_err2.c
ssl_err.c
ssl_lib.c free NULL cleanup 9 2015-04-11 16:32:54 -04:00
ssl_locl.h Renamed record layer header files 2015-03-26 15:02:01 +00:00
ssl_rsa.c
ssl_sess.c free NULL cleanup 9 2015-04-11 16:32:54 -04:00
ssl_stat.c Move s->rstate to s->rlayer.rstate 2015-03-26 15:02:00 +00:00
ssl_txt.c
ssl_utst.c
ssl-lib.com Remove SSL_TASK, the DECnet Based SSL Engine 2015-03-31 21:59:43 +02:00
t1_clnt.c
t1_enc.c Move read_sequence and write_sequence from s->s3 to s->rlayer 2015-03-26 15:02:00 +00:00
t1_ext.c
t1_lib.c
t1_meth.c
t1_reneg.c
t1_srvr.c
t1_trce.c
tls_srp.c