Fix a hang with SSL_peek() (63658103) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Commit 63658103 authored Sep 10, 2016 by

Matt Caswell

Fix a hang with SSL_peek()



If while calling SSL_peek() we read an empty record then we go into an
infinite loop, continually trying to read data from the empty record and
never making any progress. This could be exploited by a malicious peer in
a Denial Of Service attack.

CVE-2016-6305

GitHub Issue #1563

Reviewed-by: Rich Salz <rsalz@openssl.org>

parent 6d32c2ae

Hide whitespace changes

Inline Side-by-side

Please register or to comment