openssl/ssl
Guy Leaver (guleaver) 61e72d761c Fix seg fault with 0 p val in SKE
If a client receives a ServerKeyExchange for an anon DH ciphersuite with the
value of p set to 0 then a seg fault can occur. This commits adds a test to
reject p, g and pub key parameters that have a 0 value (in accordance with
RFC 5246)

The security vulnerability only affects master and 1.0.2, but the fix is
additionally applied to 1.0.1 for additional confidence.

CVE-2015-1794

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
2015-08-11 19:57:01 +01:00
..
record Fix ssl3_read_bytes handshake fragment bug 2015-08-03 11:18:06 +01:00
bio_ssl.c memset, memcpy, sizeof consistency fixes 2015-05-05 22:18:59 -04:00
d1_both.c Fix make errors for the CCS changes 2015-08-03 11:18:06 +01:00
d1_clnt.c Move DTLS CCS processing into the state machine 2015-08-03 11:18:05 +01:00
d1_lib.c RT3999: Remove sub-component version strings 2015-08-10 12:13:32 -04:00
d1_meth.c Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
d1_msg.c memset, memcpy, sizeof consistency fixes 2015-05-05 22:18:59 -04:00
d1_srtp.c PACKETise ClientHello processing 2015-08-03 11:01:42 +01:00
d1_srvr.c Move DTLS CCS processing into the state machine 2015-08-03 11:18:05 +01:00
install-ssl.com Updates following review comments 2015-05-16 09:20:52 +01:00
Makefile Add initial packet parsing code 2015-08-03 11:01:42 +01:00
packet_locl.h Fix a bug in the new PACKET implementation 2015-08-04 13:06:58 +01:00
s3_both.c Move DTLS CCS processing into the state machine 2015-08-03 11:18:05 +01:00
s3_cbc.c Identify and move OpenSSL internal header files 2015-05-14 15:13:49 +02:00
s3_clnt.c Fix seg fault with 0 p val in SKE 2015-08-11 19:57:01 +01:00
s3_enc.c Avoid duplication. 2015-06-23 22:24:09 +01:00
s3_lib.c RT3999: Remove sub-component version strings 2015-08-10 12:13:32 -04:00
s3_msg.c Introduce the functions RECORD_LAYER_release, RECORD_LAYER_read_pending, and 2015-03-26 15:01:59 +00:00
s3_srvr.c Change error reason to match previous behaviour. 2015-08-04 15:15:38 -07:00
ssl_algs.c Fix missing return value checks 2015-03-23 15:23:11 +00:00
ssl_asn1.c Remove support for OPENSSL_NO_TLSEXT 2015-05-22 23:10:51 +01:00
ssl_cert.c Remove SESS_CERT entirely. 2015-06-22 13:52:24 +01:00
ssl_ciph.c Disable unsupported PSK algorithms 2015-07-30 14:43:35 +01:00
ssl_conf.c free names before context 2015-07-21 14:27:25 +01:00
ssl_err2.c Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
ssl_err.c Fix seg fault with 0 p val in SKE 2015-08-11 19:57:01 +01:00
ssl_lib.c Enable PSK if corresponding mask set. 2015-07-30 14:43:35 +01:00
ssl_locl.h Move DTLS CCS processing into the state machine 2015-08-03 11:18:05 +01:00
ssl_rsa.c Remove support for OPENSSL_NO_TLSEXT 2015-05-22 23:10:51 +01:00
ssl_sess.c PACKETise ClientHello processing 2015-08-03 11:01:42 +01:00
ssl_stat.c Version negotiation rewrite cleanup 2015-05-16 09:20:38 +01:00
ssl_txt.c Remove support for OPENSSL_NO_TLSEXT 2015-05-22 23:10:51 +01:00
ssl_utst.c Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
ssl-lib.com Move SSLv3_*method() functions 2015-05-16 09:20:58 +01:00
t1_clnt.c Move SSLv3_*method() functions 2015-05-16 09:20:58 +01:00
t1_enc.c Tidy up ssl3_digest_cached_records logic. 2015-06-23 22:24:09 +01:00
t1_ext.c Remove support for OPENSSL_NO_TLSEXT 2015-05-22 23:10:51 +01:00
t1_lib.c RT3999: Remove sub-component version strings 2015-08-10 12:13:32 -04:00
t1_meth.c Move SSLv3_*method() functions 2015-05-16 09:20:58 +01:00
t1_reneg.c PACKETise ClientHello processing 2015-08-03 11:01:42 +01:00
t1_srvr.c Move SSLv3_*method() functions 2015-05-16 09:20:58 +01:00
t1_trce.c Add full PSK trace support 2015-07-30 14:43:35 +01:00
tls_srp.c Use single master secret generation function. 2015-06-29 11:47:59 +01:00