diff options
Diffstat (limited to 'openssl0.9.8/patches/CVE-2011-0014.patch')
| -rw-r--r-- | openssl0.9.8/patches/CVE-2011-0014.patch | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/openssl0.9.8/patches/CVE-2011-0014.patch b/openssl0.9.8/patches/CVE-2011-0014.patch new file mode 100644 index 0000000..65c8e4b --- /dev/null +++ b/openssl0.9.8/patches/CVE-2011-0014.patch @@ -0,0 +1,27 @@ +--- a/ssl/t1_lib.c 25 Nov 2010 12:28:28 -0000 1.64.2.17 ++++ b/ssl/t1_lib.c 8 Feb 2011 00:00:00 -0000 +@@ -917,6 +917,7 @@ + } + n2s(data, idsize); + dsize -= 2 + idsize; ++ size -= 2 + idsize; + if (dsize < 0) + { + *al = SSL_AD_DECODE_ERROR; +@@ -955,9 +956,14 @@ + } + + /* Read in request_extensions */ ++ if (size < 2) ++ { ++ *al = SSL_AD_DECODE_ERROR; ++ return 0; ++ } + n2s(data,dsize); + size -= 2; +- if (dsize > size) ++ if (dsize != size) + { + *al = SSL_AD_DECODE_ERROR; + return 0; + |