diff options
| author | Bodo Möller <bodo@openssl.org> | 2008-05-28 22:15:48 +0000 |
|---|---|---|
| committer | Bodo Möller <bodo@openssl.org> | 2008-05-28 22:15:48 +0000 |
| commit | 40a706286febe0279336c96374c607daaa1b1d49 (patch) | |
| tree | d3659cec7604ce0597aef00a763f62387f9de60b /ssl/t1_lib.c | |
| parent | c6f6c380c75859ad52b59220b375d817cefb0d18 (diff) | |
From HEAD:
Fix double-free in TLS server name extensions which could lead to a remote
crash found by Codenomicon TLS test suite (CVE-2008-0891)
Reviewed by: openssl-security@openssl.org
Obtained from: jorton@redhat.com
Diffstat (limited to 'ssl/t1_lib.c')
| -rw-r--r-- | ssl/t1_lib.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c index f3c5a16e48..bde52b126b 100644 --- a/ssl/t1_lib.c +++ b/ssl/t1_lib.c @@ -637,6 +637,7 @@ int ssl_parse_clienthello_tlsext(SSL *s, unsigned char **p, unsigned char *d, in s->session->tlsext_hostname[len]='\0'; if (strlen(s->session->tlsext_hostname) != len) { OPENSSL_free(s->session->tlsext_hostname); + s->session->tlsext_hostname = NULL; *al = TLS1_AD_UNRECOGNIZED_NAME; return 0; } |