generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Clear bytes used for block padding of SSL 3.0 records. (CVE-2011-4576) [include source patch this time!]

Browse Source
This commit is contained in:
Dr. Stephen Henson 2012-01-04 15:38:54 +00:00
parent 528ef87850
commit 8206dba75c
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
ssl/s3_enc.c
View File

@ -511,6 +511,9 @@ int ssl3_enc(SSL *s, int send)
/* we need to add 'i-1' padding bytes */ /* we need to add 'i-1' padding bytes */
l+=i; l+=i;
/* the last of these zero bytes will be overwritten
* with the padding length. */
memset(&rec->input[rec->length], 0, i);
rec->length+=i; rec->length+=i;
rec->input[l-1]=(i-1); rec->input[l-1]=(i-1);
} }