openssl - Mirror of https://github.com/openssl/openssl

diff options

author	Dr. Stephen Henson <steve@openssl.org>	2014-10-24 12:30:33 +0100
committer	Dr. Stephen Henson <steve@openssl.org>	2015-01-05 23:34:57 +0000
commit	4aaf1e493cb86efa64f6a486a27d38da6bce23af (patch)
tree	201d689030a5f9faa5c2acaba8f60e89cd35bdfa /crypto/evp
parent	d96c24926d74aacbabe70f9ef49a0d260d9e2fad (diff)

ECDH downgrade bug fix.

Fix bug where an OpenSSL client would accept a handshake using an ephemeral ECDH ciphersuites with the server key exchange message omitted. Thanks to Karthikeyan Bhargavan for reporting this issue. CVE-2014-3572 Reviewed-by: Matt Caswell <matt@openssl.org> (cherry picked from commit b15f8769644b00ef7283521593360b7b2135cb63)

Diffstat (limited to 'crypto/evp')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: