Do not recurse when a 'Hello Request' message is received while getting - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2014-06-05 17:53:02 +0000
committer	jsing <>	2014-06-05 17:53:02 +0000
commit	cdf40bdf9747645f289603813ca763593348e29f (patch)
tree	06d57d828b0009bb27455976f2a0022cd2402ce8 /src/lib/libssl/ssl_lib.c
parent	e6aea325b431722badc843e83c34e3213006d354 (diff)
download	openbsd-cdf40bdf9747645f289603813ca763593348e29f.tar.gz openbsd-cdf40bdf9747645f289603813ca763593348e29f.tar.bz2 openbsd-cdf40bdf9747645f289603813ca763593348e29f.zip

Do not recurse when a 'Hello Request' message is received while getting

DTLS fragments. A stream of 'Hello Request' messages will result in infinite recursion, eventually crashing the DTLS client or server. Fixes CVE-2014-0221, from OpenSSL. Reported to OpenSSL by Imre Rad.

Diffstat (limited to 'src/lib/libssl/ssl_lib.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: