Home Esplora Aiuto
Accedi
PUBLIC_REPOS
/
buildroot
mirror da git://git.buildroot.net/buildroot
2
1
Forka 0
File
Albero (Tree): 934c7bb7b5
Rami (Branch) Tag
buildroot
/
package
/
openssl
/
openssl-CVE-2009-1378.patch

openssl-CVE-2009-1378.patch 885 B
Cronologia Originale

123456789101112131415161718192021 
  1. diff -Nura openssl-0.9.8l/ssl/d1_both.c openssl-0.9.8l-CVE-2009-1378/ssl/d1_both.c
    2. 

  2. --- openssl-0.9.8l/ssl/d1_both.c	2007-10-17 18:17:49.000000000 -0300
    3. 

  3. +++ openssl-0.9.8l-CVE-2009-1378/ssl/d1_both.c	2009-11-10 13:20:02.000000000 -0300
    4. 

  4. @@ -561,7 +561,16 @@
    5. 

  5.  	if ((msg_hdr->frag_off+frag_len) > msg_hdr->msg_len)
    6. 

  6.  		goto err;
    7. 

  7.  
    8. 

  8. -	if (msg_hdr->seq <= s->d1->handshake_read_seq)
    9. 

  9. +	/* Try to find item in queue, to prevent duplicate entries */
    10. 

  10. +	pq_64bit_init(&seq64);
    11. 

  11. +	pq_64bit_assign_word(&seq64, msg_hdr->seq);
    12. 

  12. +	item = pqueue_find(s->d1->buffered_messages, seq64);
    13. 

  13. +	pq_64bit_free(&seq64);
    14. 

  14. +	
    15. 

  15. +	/* Discard the message if sequence number was already there, is
    16. 

  16. +	 * too far in the future or the fragment is already in the queue */
    17. 

  17. +	if (msg_hdr->seq <= s->d1->handshake_read_seq ||
    18. 

  18. +		msg_hdr->seq > s->d1->handshake_read_seq + 10 || item != NULL)
    19. 

  19.  		{
    20. 

  20.  		unsigned char devnull [256];
    21. 

  21.  
    22.