Clear bytes used for block padding of SSL 3.0 records. (CVE-2011-4576)

2012-01-04 23:13:29 +00:00 · 2012-01-04 23:13:29 +00:00 · 4e44bd3650
commit 4e44bd3650
parent 0cffb0cd3e
2 changed files with 7 additions and 0 deletions
--- a/4
+++ b/4
@ -269,6 +269,10 @@

 Changes between 1.0.0e and 1.0.0f [xx XXX xxxx]

+  *) Clear bytes used for block padding of SSL 3.0 records.
+     (CVE-2011-4576)
+     [Adam Langley (Google)]
+
  *) Only allow one SGC handshake restart for SSL/TLS. (CVE-2011-4619)
     [Adam Langley (Google)]

--- a/ssl/s3_enc.c
+++ b/ssl/s3_enc.c
@ -512,6 +512,9 @@ int ssl3_enc(SSL *s, int send)

 			/* we need to add 'i-1' padding bytes */
 			l+=i;
+			/* the last of these zero bytes will be overwritten
+			 * with the padding length. */
+			memset(&rec->input[rec->length], 0, i);
 			rec->length+=i;
 			rec->input[l-1]=(i-1);
 			}