CVSROOT: /cvs Module name: src Changes by: [email protected] 2020/08/10 12:54:45
Modified files:
lib/libssl : tls13_record_layer.c
Log message:
Avoid passing -1 to freezero.
If a peer sends a bogus record consisting of all-zero plaintext,
the content_len would be decremented to -1 and cause a crash in
freezero.
ok inoguchi jsing
