Avoid a NULL dereference in the DTLS client that can be triggered by a - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2014-11-27 16:03:03 +0000
committer	jsing <>	2014-11-27 16:03:03 +0000
commit	07409820dc766c10b948b458d7af9315231002f1 (patch)
tree	b520ad37da120e6f1f35a849623806156505fa8f /src/lib/libc/stdlib/exit.c
parent	2b7b1f3fa633621744ceb3865d0d012edd77c0b1 (diff)
download	openbsd-07409820dc766c10b948b458d7af9315231002f1.tar.gz openbsd-07409820dc766c10b948b458d7af9315231002f1.tar.bz2 openbsd-07409820dc766c10b948b458d7af9315231002f1.zip

Avoid a NULL dereference in the DTLS client that can be triggered by a

crafted server response used in conjunction with an anonymous DH or anonymous ECDH ciphersuite. Fixes CVE-2014-3510, which is effectively a repeat of CVE-2014-3470 in copied code. Reported by Felix Groebert of the Google Security Team. ok beck@ miod@

Diffstat (limited to 'src/lib/libc/stdlib/exit.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: