diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2014-10-24 12:30:33 +0100 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2015-01-05 22:59:32 +0000 |
commit | b15f8769644b00ef7283521593360b7b2135cb63 (patch) | |
tree | b4d18627db345215516e44ce4463cfc011b566f8 /times/686-200.lnx | |
parent | b5526482ef81ee7906b967e326d23a45fbcf3abc (diff) |
ECDH downgrade bug fix.
Fix bug where an OpenSSL client would accept a handshake using an
ephemeral ECDH ciphersuites with the server key exchange message omitted.
Thanks to Karthikeyan Bhargavan for reporting this issue.
CVE-2014-3572
Reviewed-by: Matt Caswell <matt@openssl.org>
Diffstat (limited to 'times/686-200.lnx')
0 files changed, 0 insertions, 0 deletions