QuasarApp/openssl
4
0
Fork 0
mirror of https://github.com/QuasarApp/openssl.git synced 2025-05-21 22:09:40 +00:00
Code Issues Projects Releases Wiki Activity
openssl/ssl
History
Matt Caswell 63658103d4 Fix a hang with SSL_peek() 
If while calling SSL_peek() we read an empty record then we go into an
infinite loop, continually trying to read data from the empty record and
never making any progress. This could be exploited by a malicious peer in
a Denial Of Service attack.

CVE-2016-6305

GitHub Issue #1563

Reviewed-by: Rich Salz <rsalz@openssl.org>
2016-09-22 09:28:07 +01:00
..
record
Fix a hang with SSL_peek()
2016-09-22 09:28:07 +01:00
statem
Fix error message typo, wrong function code
2016-09-22 09:26:37 +01:00
bio_ssl.c
Fix BIO_pop for SSL BIOs
2016-07-29 14:09:57 +01:00
build.info
Update build.info files for auto-init/de-init
2016-02-09 15:11:38 +00:00
d1_lib.c
Fix DTLS buffered message DoS attack
2016-08-22 10:53:55 +01:00
d1_msg.c
Whitespace cleanup in ssl folder
2016-06-29 09:56:39 -04:00
d1_srtp.c
Indent ssl/
2016-08-18 14:02:29 +02:00
methods.c
Indent ssl/
2016-08-18 14:02:29 +02:00
packet_locl.h
Indent ssl/
2016-08-18 14:02:29 +02:00
pqueue.c
Copyright consolidation 01/10
2016-05-17 14:19:19 -04:00
s3_cbc.c
Indent ssl/
2016-08-18 14:02:29 +02:00
s3_enc.c
Indent ssl/
2016-08-18 14:02:29 +02:00
s3_lib.c
Put DES into "not default" category.
2016-08-24 14:05:52 +01:00
s3_msg.c
Indent ssl/
2016-08-18 14:02:29 +02:00
ssl_asn1.c
Indent ssl/
2016-08-18 14:02:29 +02:00
ssl_cert.c
Indent ssl/
2016-08-18 14:02:29 +02:00
ssl_ciph.c
Remove trailing zeros
2016-08-26 15:19:40 -04:00
ssl_conf.c
Indent ssl/
2016-08-18 14:02:29 +02:00
ssl_err.c
Don't allow too many consecutive warning alerts
2016-09-21 20:21:57 +01:00
ssl_init.c
Indent ssl/
2016-08-18 14:02:29 +02:00
ssl_lib.c
Fix comment about return value of ct_extract_tls_extension_scts
2016-08-24 13:58:19 +01:00
ssl_locl.h
Fix DTLS buffered message DoS attack
2016-08-22 10:53:55 +01:00
ssl_mcnf.c
Indent ssl/
2016-08-18 14:02:29 +02:00
ssl_rsa.c
Indent ssl/
2016-08-18 14:02:29 +02:00
ssl_sess.c
Indent ssl/
2016-08-18 14:02:29 +02:00
ssl_stat.c
Add missing debug strings.
2016-09-07 16:09:01 -04:00
ssl_txt.c
Indent ssl/
2016-08-18 14:02:29 +02:00
ssl_utst.c
Copyright consolidation 01/10
2016-05-17 14:19:19 -04:00
t1_enc.c
Indent ssl/
2016-08-18 14:02:29 +02:00
t1_ext.c
Indent ssl/
2016-08-18 14:02:29 +02:00
t1_lib.c
Fix a mem leak in NPN handling
2016-09-22 09:28:07 +01:00
t1_reneg.c
Indent ssl/
2016-08-18 14:02:29 +02:00
t1_trce.c
Ensure trace recognises X25519
2016-09-08 12:36:46 +01:00
tls_srp.c
Indent ssl/
2016-08-18 14:02:29 +02:00