Do not recurse when a 'Hello Request' message is received while getting - wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

diff options

author	jsing <jsing@openbsd.org>	2014-06-05 17:53:02 +0000
committer	jsing <jsing@openbsd.org>	2014-06-05 17:53:02 +0000
commit	1aa2bd1933f68335de427dbf34ece22dba428a97 (patch)
tree	7c4873c9b78e5e39da368bd5842f72f6cf6c82ee /lib/libssl/src/crypto
parent	Ensure that sess_cert is not NULL before trying to use it. (diff)
download	wireguard-openbsd-1aa2bd1933f68335de427dbf34ece22dba428a97.tar.xz wireguard-openbsd-1aa2bd1933f68335de427dbf34ece22dba428a97.zip

Do not recurse when a 'Hello Request' message is received while getting

DTLS fragments. A stream of 'Hello Request' messages will result in infinite recursion, eventually crashing the DTLS client or server. Fixes CVE-2014-0221, from OpenSSL. Reported to OpenSSL by Imre Rad.

Diffstat (limited to 'lib/libssl/src/crypto')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: