summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorbrad <>2004-03-17 18:07:42 +0000
committerbrad <>2004-03-17 18:07:42 +0000
commit2013286ddfd847433e517f8bd8dc1a0a7da53a40 (patch)
tree619150c1e2c952f10262be07b43b6e6aa0c9641a
parentea2b2394af4a2ce63b39dc2e6bbe2e0040925dd1 (diff)
downloadopenbsd-OPENBSD_3_3.tar.gz
openbsd-OPENBSD_3_3.tar.bz2
openbsd-OPENBSD_3_3.zip
Fix by markus@ avoid null-pointer deref (aka CAN-2004-0079) see http://www.openssl.org/news/secadv_20040317.txt ok deraadt@ markus@
-rw-r--r--src/lib/libssl/src/ssl/s3_pkt.c8
1 files changed, 8 insertions, 0 deletions
diff --git a/src/lib/libssl/src/ssl/s3_pkt.c b/src/lib/libssl/src/ssl/s3_pkt.c
index 3f88429e79..9f3e5139ad 100644
--- a/src/lib/libssl/src/ssl/s3_pkt.c
+++ b/src/lib/libssl/src/ssl/s3_pkt.c
@@ -1085,6 +1085,14 @@ start:
1085 goto err; 1085 goto err;
1086 } 1086 }
1087 1087
1088 /* Check we have a cipher to change to */
1089 if (s->s3->tmp.new_cipher == NULL)
1090 {
1091 i=SSL_AD_UNEXPECTED_MESSAGE;
1092 SSLerr(SSL_F_SSL3_GET_CERT_VERIFY,SSL_R_CCS_RECEIVED_EARLY);
1093 goto err;
1094 }
1095
1088 rr->length=0; 1096 rr->length=0;
1089 1097
1090 if (s->msg_callback) 1098 if (s->msg_callback)