4
0
mirror of https://github.com/QuasarApp/openssl.git synced 2025-05-09 16:09:47 +00:00
Matt Caswell e9bbefbf0f Go into the error state if a fatal alert is sent or received
If an application calls SSL_shutdown after a fatal alert has occured and
then behaves different based on error codes from that function then the
application may be vulnerable to a padding oracle.

CVE-2019-1559

Reviewed-by: Richard Levitte <levitte@openssl.org>
2019-02-26 14:13:05 +00:00
..
2015-09-20 14:21:18 +01:00
2015-08-28 11:59:23 -04:00
2018-08-14 13:40:34 +01:00
2017-02-09 14:19:36 +01:00
2017-12-08 15:08:43 -05:00
2017-03-13 13:08:01 +00:00
2015-02-27 20:31:28 +00:00
2016-08-24 09:23:14 +01:00
2016-11-29 09:54:58 +00:00
2018-03-27 13:46:45 +01:00
2018-03-27 14:55:22 +01:00
2017-12-08 15:08:43 -05:00
2017-12-08 15:08:43 -05:00
2016-03-14 21:13:59 +01:00
2017-02-09 14:19:36 +01:00
2018-08-14 13:40:34 +01:00
2018-08-14 13:40:34 +01:00
2015-01-22 09:31:38 +00:00
2015-01-22 09:31:38 +00:00
2015-01-22 09:31:38 +00:00
2015-01-22 09:31:38 +00:00
2016-09-15 12:49:00 +01:00
2018-11-20 13:29:53 +00:00
2018-11-10 00:45:24 +01:00
2018-08-14 13:40:34 +01:00
2015-05-05 19:50:12 +01:00
2018-08-14 13:40:34 +01:00
2017-12-08 15:08:43 -05:00
2018-08-14 13:40:34 +01:00
2015-04-16 13:50:01 -04:00