diff options
author | Matt Caswell <matt@openssl.org> | 2015-06-10 09:32:34 +0100 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2015-06-10 10:02:16 +0100 |
commit | 106a9a5d7e26e728a654d7424849081bd988d4a5 (patch) | |
tree | ab578e8b2e743fdc94b8b75d8d830594929402b9 | |
parent | cb972a4fe710c3e07300cdd3e3c3d41a42fc9672 (diff) |
Fix Kerberos issue in ssl_session_dup
The fix for CVE-2015-1791 introduced an error in ssl_session_dup for
Kerberos.
Reviewed-by: Tim Hudson <tjh@openssl.org>
(cherry picked from commit dcad51bc13c9b716d9a66248bcc4038c071ff158)
-rw-r--r-- | ssl/ssl_sess.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c index e673f9c621..8325cb316b 100644 --- a/ssl/ssl_sess.c +++ b/ssl/ssl_sess.c @@ -242,7 +242,7 @@ SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket) memcpy(dest, src, sizeof(*dest)); #ifndef OPENSSL_NO_KRB5 - dest->krb5_client_princ_len = dest->krb5_client_princ_len; + dest->krb5_client_princ_len = src->krb5_client_princ_len; if (src->krb5_client_princ_len > 0) memcpy(dest->krb5_client_princ, src->krb5_client_princ, src->krb5_client_princ_len); |