diff options
Diffstat (limited to 'openssl0.9.8/patches/CVE-2011-4576.patch')
-rw-r--r-- | openssl0.9.8/patches/CVE-2011-4576.patch | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/openssl0.9.8/patches/CVE-2011-4576.patch b/openssl0.9.8/patches/CVE-2011-4576.patch new file mode 100644 index 0000000..7e65fda --- /dev/null +++ b/openssl0.9.8/patches/CVE-2011-4576.patch @@ -0,0 +1,14 @@ +diff --git a/ssl/s3_enc.c b/ssl/s3_enc.c +index 1539a4c..759231d 100644 +--- a/ssl/s3_enc.c ++++ b/ssl/s3_enc.c +@@ -479,6 +479,9 @@ int ssl3_enc(SSL *s, int send) + + /* we need to add 'i-1' padding bytes */ + l+=i; ++ /* the last of these zero bytes will be overwritten ++ * with the padding length. */ ++ memset(&rec->input[rec->length], 0, i); + rec->length+=i; + rec->input[l-1]=(i-1); + } |