summaryrefslogtreecommitdiff
path: root/openssl0.9.8/patches/CVE-2011-4576.patch
diff options
context:
space:
mode:
Diffstat (limited to 'openssl0.9.8/patches/CVE-2011-4576.patch')
-rw-r--r--openssl0.9.8/patches/CVE-2011-4576.patch14
1 files changed, 14 insertions, 0 deletions
diff --git a/openssl0.9.8/patches/CVE-2011-4576.patch b/openssl0.9.8/patches/CVE-2011-4576.patch
new file mode 100644
index 0000000..7e65fda
--- /dev/null
+++ b/openssl0.9.8/patches/CVE-2011-4576.patch
@@ -0,0 +1,14 @@
+diff --git a/ssl/s3_enc.c b/ssl/s3_enc.c
+index 1539a4c..759231d 100644
+--- a/ssl/s3_enc.c
++++ b/ssl/s3_enc.c
+@@ -479,6 +479,9 @@ int ssl3_enc(SSL *s, int send)
+
+ /* we need to add 'i-1' padding bytes */
+ l+=i;
++ /* the last of these zero bytes will be overwritten
++ * with the padding length. */
++ memset(&rec->input[rec->length], 0, i);
+ rec->length+=i;
+ rec->input[l-1]=(i-1);
+ }
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-15 21:50:39 +0000