Avoid a NULL dereference in the DTLS client that can be triggered by a - wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

diff options

author	jsing <jsing@openbsd.org>	2014-11-27 16:03:03 +0000
committer	jsing <jsing@openbsd.org>	2014-11-27 16:03:03 +0000
commit	1d1d8690bd0bd971ae25d1f588b533ef33c97662 (patch)
tree	c73db3b912cf1eb974c4175ad4bf097d98577c6a /lib/libssl/d1_srtp.c
parent	Another spot where the VLAN tag doesn't need swapping in the currently (diff)
download	wireguard-openbsd-1d1d8690bd0bd971ae25d1f588b533ef33c97662.tar.xz wireguard-openbsd-1d1d8690bd0bd971ae25d1f588b533ef33c97662.zip

Avoid a NULL dereference in the DTLS client that can be triggered by a

crafted server response used in conjunction with an anonymous DH or anonymous ECDH ciphersuite. Fixes CVE-2014-3510, which is effectively a repeat of CVE-2014-3470 in copied code. Reported by Felix Groebert of the Google Security Team. ok beck@ miod@

Diffstat (limited to 'lib/libssl/d1_srtp.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: