mirrors/openssl
0
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-12-01 05:55:11 +08:00
Code Issues Packages Projects Releases Wiki Activity
bfb8128190
openssl/ssl
History
Matt Caswell bfb8128190 Set rl->packet to NULL after we've finished using it 
In order to ensure we do not have a UAF we reset the rl->packet pointer
to NULL after we free it.

Follow on from CVE-2024-4741

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24395)
2024-05-28 13:28:13 +01:00
..
quic QUIC TXP: Fix reserve calculations for PING frames 2024-04-18 17:42:26 +02:00
record Set rl->packet to NULL after we've finished using it 2024-05-28 13:28:13 +01:00
rio QUIC POLLING: Support no-quic builds 2024-02-10 11:37:14 +00:00
statem Move stack of compression methods from libssl to OSSL_LIB_CTX 2024-05-28 08:56:13 +02:00
bio_ssl.c Copyright year updates 2024-04-09 13:43:26 +02:00
build.info QUIC RIO: Add frontend SSL_poll implementation 2024-02-10 11:37:14 +00:00
d1_lib.c Remove SSL_ENC_FLAG_EXPLICIT_IV which is only set and never read. 2024-05-14 15:34:07 +02:00
d1_msg.c Copyright year updates 2023-09-07 09:59:15 +01:00
d1_srtp.c Copyright year updates 2024-04-09 13:43:26 +02:00
event_queue.c Remove a spurious inclusion of the sparse array header file 2023-09-25 07:45:32 +10:00
methods.c Update some inclusions of <openssl/macros.h> 2019-11-07 11:37:25 +01:00
pqueue.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
priority_queue.c Fix bug in priority queue remove function 2023-11-08 11:09:12 +00:00
s3_enc.c Copyright year updates 2024-04-09 13:43:26 +02:00
s3_lib.c Add support for integrity-only cipher suites for TLS v1.3 2024-05-14 15:39:15 +02:00
s3_msg.c Resolve a TODO in ssl3_dispatch_alert 2022-11-14 10:14:41 +01:00
ssl_asn1.c RFC7250 (RPK) support 2023-03-28 13:49:54 -04:00
ssl_cert_comp.c Copyright year updates 2023-09-07 09:59:15 +01:00
ssl_cert_table.h Make ssl_cert_info read-only 2023-11-27 07:51:33 +00:00
ssl_cert.c Make ssl_cert_info read-only 2023-11-27 07:51:33 +00:00
ssl_ciph.c Move stack of compression methods from libssl to OSSL_LIB_CTX 2024-05-28 08:56:13 +02:00
ssl_conf.c Copyright year updates 2024-04-09 13:43:26 +02:00
ssl_err_legacy.c Update copyright year 2021-06-17 13:24:59 +01:00
ssl_err.c Add reason codes with the correct offset for two alerts 2024-05-14 15:27:17 +02:00
ssl_init.c Move stack of compression methods from libssl to OSSL_LIB_CTX 2024-05-28 08:56:13 +02:00
ssl_lib.c Make conf_diagnostics apply also to the SSL conf errors 2024-05-09 09:20:25 +02:00
ssl_local.h Move stack of compression methods from libssl to OSSL_LIB_CTX 2024-05-28 08:56:13 +02:00
ssl_mcnf.c Set SSL_CONF_FLAG_SHOW_ERRORS when conf_diagnostics is enabled 2024-05-09 09:20:58 +02:00
ssl_rsa_legacy.c Deprecate RSA harder 2020-11-18 23:38:34 +01:00
ssl_rsa.c Copyright year updates 2023-09-07 09:59:15 +01:00
ssl_sess.c Typo fixes 2024-05-13 11:10:35 +02:00
ssl_stat.c SSL_alert_desc_string_long(): Delete unnecessary underline 2024-04-04 08:33:21 +02:00
ssl_txt.c Move stack of compression methods from libssl to OSSL_LIB_CTX 2024-05-28 08:56:13 +02:00
ssl_utst.c Remove the old buffer management code 2022-10-20 14:39:33 +01:00
sslerr.h QUIC APL: Implement optimised FIN API 2024-01-23 14:20:06 +00:00
t1_enc.c Copyright year updates 2024-04-09 13:43:26 +02:00
t1_lib.c Remove SSL_ENC_FLAG_EXPLICIT_IV which is only set and never read. 2024-05-14 15:34:07 +02:00
t1_trce.c Add support for integrity-only cipher suites for TLS v1.3 2024-05-14 15:39:15 +02:00
tls13_enc.c Add support for integrity-only cipher suites for TLS v1.3 2024-05-14 15:39:15 +02:00
tls_depr.c SSL object refactoring using SSL_CONNECTION object 2022-07-28 10:04:28 +01:00
tls_srp.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00