Google Git
Sign in
flutter / third_party / openssl / c46ecc3a55bcbbe4ff31da3864d015e343b0189f
commitc46ecc3a55bcbbe4ff31da3864d015e343b0189f[log] [tgz]
authorDr. Stephen Henson <steve@openssl.org>Thu May 10 16:03:52 2012 +0000
committerDr. Stephen Henson <steve@openssl.org>Thu May 10 16:03:52 2012 +0000
tree9596e19677fc82e9605006d8f35320bfd32ec52d
parent7388b43cae035484036f5dc46c231ce6282a1367 [diff]
Sanity check record length before skipping explicit IV in TLS 1.2, 1.1 and
DTLS to fix DoS attack.

Thanks to Codenomicon for discovering this issue using Fuzz-o-Matic
fuzzing as a service testing platform.
(CVE-2012-2333)
3 files changed
tree: 9596e19677fc82e9605006d8f35320bfd32ec52d
  1. apps/
  2. bugs/
  3. certs/
  4. crypto/
  5. demos/
  6. doc/
  7. engines/
  8. fips/
  9. include/
  10. ms/
  11. Netware/
  12. os2/
  13. perl/
  14. shlib/
  15. ssl/
  16. test/
  17. times/
  18. tools/
  19. util/
  20. VMS/
  21. .cvsignore
  22. ACKNOWLEDGMENTS
  23. CHANGES
  24. CHANGES.SSLeay
  25. config
  26. Configure
  27. e_os.h
  28. e_os2.h
  29. FAQ
  30. INSTALL
  31. install.com
  32. INSTALL.DJGPP
  33. INSTALL.MacOS
  34. INSTALL.NW
  35. INSTALL.OS2
  36. INSTALL.VMS
  37. INSTALL.W32
  38. INSTALL.W64
  39. INSTALL.WCE
  40. LICENSE
  41. Makefile.fips
  42. Makefile.org
  43. Makefile.shared
  44. makevms.com
  45. NEWS
  46. openssl.doxy
  47. openssl.spec
  48. PROBLEMS
  49. README
  50. README.ASN1
  51. README.ECC
  52. README.ENGINE
  53. README.FIPS
  54. STATUS
  55. TABLE