CVSROOT: /cvs Module name: src Changes by: js...@cvs.openbsd.org 2014/06/10 08:46:11
Modified files:
lib/libssl/src/ssl: t1_enc.c
Log message:
In tls1_cert_verify_mac(), check the return value of EVP_MD_CTX_copy_ex()
to avoid a possible NULL function call on ctx.final(). None of the callers
currently check the return value of calls to cert_verify_mac(), however
the function already returns 0 in another case and the MAC comparison will
later fail.
Issue reported by David Ramos.
