openssl 0.9.8 mostly done

author: Igor Pashev <igor.pashev@nexenta.com> 2012-10-26 17:19:15 +0400
committer: Igor Pashev <igor.pashev@nexenta.com> 2012-10-26 17:19:15 +0400
commit: a5fa80e2a069e35331af10369d810b4daa63635b (patch)
tree: cde72d630e4066581f9818b3a506b6433e343923 /openssl0.9.8/patches/CVE-2011-0014.patch
parent: a66434a8c8bc288d863e0f649e8e465ac4525043 (diff)
download: cibs-pkgs-a5fa80e2a069e35331af10369d810b4daa63635b.tar.gz
1 files changed, 27 insertions, 0 deletions
diff --git a/openssl0.9.8/patches/CVE-2011-0014.patch b/openssl0.9.8/patches/CVE-2011-0014.patch
new file mode 100644
index 0000000..65c8e4b
--- /dev/null
+++ b/openssl0.9.8/patches/CVE-2011-0014.patch
@@ -0,0 +1,27 @@
+--- a/ssl/t1_lib.c	25 Nov 2010 12:28:28 -0000	1.64.2.17
++++ b/ssl/t1_lib.c	8 Feb 2011 00:00:00 -0000
+@@ -917,6 +917,7 @@
+ 						}
+ 					n2s(data, idsize);
+ 					dsize -= 2 + idsize;
++					size -= 2 + idsize;
+ 					if (dsize < 0)
+ 						{
+ 						*al = SSL_AD_DECODE_ERROR;
+@@ -955,9 +956,14 @@
+ 					}
+ 
+ 				/* Read in request_extensions */
++				if (size < 2)
++					{
++					*al = SSL_AD_DECODE_ERROR;
++					return 0;
++					}
+ 				n2s(data,dsize);
+ 				size -= 2;
+-				if (dsize > size) 
++				if (dsize != size)
+ 					{
+ 					*al = SSL_AD_DECODE_ERROR;
+ 					return 0;
+
author	Igor Pashev <igor.pashev@nexenta.com>	2012-10-26 17:19:15 +0400
committer	Igor Pashev <igor.pashev@nexenta.com>	2012-10-26 17:19:15 +0400
commit	a5fa80e2a069e35331af10369d810b4daa63635b (patch)
tree	cde72d630e4066581f9818b3a506b6433e343923 /openssl0.9.8/patches/CVE-2011-0014.patch
parent	a66434a8c8bc288d863e0f649e8e465ac4525043 (diff)
download	cibs-pkgs-a5fa80e2a069e35331af10369d810b4daa63635b.tar.gz