diff options
author | brad <> | 2004-03-17 18:07:42 +0000 |
---|---|---|
committer | brad <> | 2004-03-17 18:07:42 +0000 |
commit | 2013286ddfd847433e517f8bd8dc1a0a7da53a40 (patch) | |
tree | 619150c1e2c952f10262be07b43b6e6aa0c9641a | |
parent | ea2b2394af4a2ce63b39dc2e6bbe2e0040925dd1 (diff) | |
download | openbsd-OPENBSD_3_3.tar.gz openbsd-OPENBSD_3_3.tar.bz2 openbsd-OPENBSD_3_3.zip |
MFC:OPENBSD_3_3
Fix by markus@
avoid null-pointer deref (aka CAN-2004-0079)
see http://www.openssl.org/news/secadv_20040317.txt
ok deraadt@ markus@
-rw-r--r-- | src/lib/libssl/src/ssl/s3_pkt.c | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/src/lib/libssl/src/ssl/s3_pkt.c b/src/lib/libssl/src/ssl/s3_pkt.c index 3f88429e79..9f3e5139ad 100644 --- a/src/lib/libssl/src/ssl/s3_pkt.c +++ b/src/lib/libssl/src/ssl/s3_pkt.c | |||
@@ -1085,6 +1085,14 @@ start: | |||
1085 | goto err; | 1085 | goto err; |
1086 | } | 1086 | } |
1087 | 1087 | ||
1088 | /* Check we have a cipher to change to */ | ||
1089 | if (s->s3->tmp.new_cipher == NULL) | ||
1090 | { | ||
1091 | i=SSL_AD_UNEXPECTED_MESSAGE; | ||
1092 | SSLerr(SSL_F_SSL3_GET_CERT_VERIFY,SSL_R_CCS_RECEIVED_EARLY); | ||
1093 | goto err; | ||
1094 | } | ||
1095 | |||
1088 | rr->length=0; | 1096 | rr->length=0; |
1089 | 1097 | ||
1090 | if (s->msg_callback) | 1098 | if (s->msg_callback) |