Fix buffer overflow in SSL_get_shared_ciphers() function.

(CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team] Fix SSL client code which could crash if connecting to a malicious SSLv2 server. (CVE-2006-4343) [Tavis Ormandy and Will Drewry, Google Security Team]
author: Mark J. Cox <mark@openssl.org> 2006-09-28 13:18:43 +0000
committer: Mark J. Cox <mark@openssl.org> 2006-09-28 13:18:43 +0000
commit: 3ff55e9680cc99f330f25e48cd1422e3459c02de (patch)
tree: 1d0ec06ac2e93bcd761869294c1e21b682dce4a6 /ssl/s3_srvr.c
parent: cbb92dfaf0ec4e4bc91e729c69847f56d40d8302 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/s3_srvr.c b/ssl/s3_srvr.c
index 85fa6849a2..a83f8ac763 100644
--- a/ssl/s3_srvr.c
+++ b/ssl/s3_srvr.c
@@ -2089,7 +2089,7 @@ int ssl3_get_client_key_exchange(SSL *s)
 
                 if (kssl_ctx->client_princ)
                         {
-                        int len = strlen(kssl_ctx->client_princ);
+                        size_t len = strlen(kssl_ctx->client_princ);
                         if ( len < SSL_MAX_KRB5_PRINCIPAL_LENGTH ) 
                                 {
                                 s->session->krb5_client_princ_len = len;
author	Mark J. Cox <mark@openssl.org>	2006-09-28 13:18:43 +0000
committer	Mark J. Cox <mark@openssl.org>	2006-09-28 13:18:43 +0000
commit	3ff55e9680cc99f330f25e48cd1422e3459c02de (patch)
tree	1d0ec06ac2e93bcd761869294c1e21b682dce4a6 /ssl/s3_srvr.c
parent	cbb92dfaf0ec4e4bc91e729c69847f56d40d8302 (diff)