openssl/ssl at 6e24e1cdd20d568ca11a95943f34c6031c60a1df - openssl - Atria-soft GIT

generic-library/openssl

History

Emilia Kasper cd56a08d4e Fix reachable assert in SSLv2 servers.

This assert is reachable for servers that support SSLv2 and export ciphers.
Therefore, such servers can be DoSed by sending a specially crafted
SSLv2 CLIENT-MASTER-KEY.

Also fix s2_srvr.c to error out early if the key lengths are malformed.
These lengths are sent unencrypted, so this does not introduce an oracle.

CVE-2015-0293

This issue was discovered by Sean Burford (Google) and Emilia Käsper of
the OpenSSL development team.

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>

2015-03-19 12:59:31 +00:00

..

.cvsignore

Add emacs cache files to .cvsignore.

2005-04-11 14:17:07 +00:00

bio_ssl.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

d1_both.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

d1_clnt.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

d1_enc.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

d1_lib.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

d1_meth.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

d1_pkt.c

Harmonize return values in dtls1_buffer_record

2015-03-10 13:52:37 -07:00

d1_srtp.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

d1_srvr.c

Rerun util/openssl-format-source -v -c .

2015-01-22 09:38:49 +00:00

dtls1.h

Fix d2i_SSL_SESSION for DTLS1_BAD_VER

2015-02-27 20:32:49 +00:00

heartbeat_test.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

install-ssl.com

Don't forget to install srtp.h as well

2012-05-10 15:01:22 +00:00

kssl_lcl.h

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

kssl.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

kssl.h

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

Makefile

RT3067: simplify patch

2014-09-24 15:52:41 +02:00

s2_clnt.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

s2_enc.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

s2_lib.c

Fix reachable assert in SSLv2 servers.

2015-03-19 12:59:31 +00:00

s2_meth.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

s2_pkt.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

s2_srvr.c

Fix reachable assert in SSLv2 servers.

2015-03-19 12:59:31 +00:00

s3_both.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

s3_cbc.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

s3_clnt.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

s3_enc.c

Cleanse buffers

2015-03-11 10:49:22 +00:00

s3_lib.c

Rerun util/openssl-format-source -v -c .

2015-01-22 09:38:49 +00:00

s3_meth.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

s3_pkt.c

Use constants not numbers

2015-03-05 09:30:35 +00:00

s3_srvr.c

Fix missing return value checks.

2015-02-27 15:25:05 +00:00

s23_clnt.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

s23_lib.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

s23_meth.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

s23_pkt.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

s23_srvr.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

srtp.h

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl2.h

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl3.h

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl23.h

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl_algs.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl_asn1.c

Fix d2i_SSL_SESSION for DTLS1_BAD_VER

2015-02-27 20:32:49 +00:00

ssl_cert.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl_ciph.c

Remove export ciphers from the DEFAULT cipher list

2015-03-07 23:08:12 +01:00

ssl_err2.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl_err.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl_lib.c

Fix no-ec warning

2015-02-27 08:57:44 +00:00

ssl_locl.h

fix warning

2015-03-08 22:42:23 +00:00

ssl_rsa.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl_sess.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

ssl_stat.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl_task.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

ssl_txt.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl_utst.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

ssl-lib.com

Spaces were added in some strings for better readability. However, those spaces do not belong in file names, so when picking out the individual parts, remove the spaces

2014-10-15 10:49:24 +02:00

ssl.h

Remove export ciphers from the DEFAULT cipher list

2015-03-07 23:08:12 +01:00

ssltest.c

Fix error handling in ssltest

2015-02-06 10:10:49 +00:00

t1_clnt.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

t1_enc.c

Add sanity check to PRF

2015-03-17 13:49:32 +00:00

t1_lib.c

Re-align some comments after running the reformat script.

2015-01-22 09:39:01 +00:00

t1_meth.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

t1_reneg.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

t1_srvr.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

tls1.h

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00

tls_srp.c

Run util/openssl-format-source -v -c .

2015-01-22 09:38:39 +00:00