openssl - Mirror of https://github.com/openssl/openssl

diff options

author	Dr. Stephen Henson <steve@openssl.org>	2014-10-24 12:30:33 +0100
committer	Dr. Stephen Henson <steve@openssl.org>	2015-01-05 23:59:04 +0000
commit	e42a2abadc90664e2615dc63ba7f79cf163f780a (patch)
tree	9e98eb7d77dade5a272e791642e4db89fefefead /doc/ssl/SSL_CTX_set_tmp_rsa_callback.pod
parent	ec2fede9467ae1a65f452d3a39f7fbc4891d9285 (diff)

ECDH downgrade bug fix.

Fix bug where an OpenSSL client would accept a handshake using an ephemeral ECDH ciphersuites with the server key exchange message omitted. Thanks to Karthikeyan Bhargavan for reporting this issue. CVE-2014-3572 Reviewed-by: Matt Caswell <matt@openssl.org> (cherry picked from commit b15f8769644b00ef7283521593360b7b2135cb63) Conflicts: CHANGES ssl/s3_clnt.c

Diffstat (limited to 'doc/ssl/SSL_CTX_set_tmp_rsa_callback.pod')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: