Add additional checks to ssl3_send_client_key_exchange() that ensures - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2015-02-06 09:58:52 +0000
committer	jsing <>	2015-02-06 09:58:52 +0000
commit	dd25054148254be0a90d442f6e03d2f175e02e57 (patch)
tree	ed361a344289c7ae8f6d94cc1f12da9e7618aa36 /src/lib/libssl/ssl_lib.c
parent	57c3c820260976eedbeceb47dc79b313f0dd1b42 (diff)
download	openbsd-dd25054148254be0a90d442f6e03d2f175e02e57.tar.gz openbsd-dd25054148254be0a90d442f6e03d2f175e02e57.tar.bz2 openbsd-dd25054148254be0a90d442f6e03d2f175e02e57.zip

Add additional checks to ssl3_send_client_key_exchange() that ensures

ephemeral keys exist for SSL_kDHE and SSL_kECDHE. This would have prevented CVE-2014-3572. ok doug@

Diffstat (limited to '')

0 files changed, 0 insertions, 0 deletions