CVS: cvs.openbsd.org: src

Joel Sing Fri, 06 Feb 2015 01:59:39 -0800

CVSROOT:        /cvs
Module name:    src
Changes by:     js...@cvs.openbsd.org   2015/02/06 02:58:52


Modified files:
        lib/libssl/src/ssl: s3_clnt.c 

Log message:
Add additional checks to ssl3_send_client_key_exchange() that ensures
ephemeral keys exist for SSL_kDHE and SSL_kECDHE.

This would have prevented CVE-2014-3572.

ok doug@

CVS: cvs.openbsd.org: src

Reply via email to