git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Matt Caswell <matt@openssl.org>
	Tue, 23 Apr 2024 15:36:11 +0000 (16:36 +0100)
committer	Matt Caswell <matt@openssl.org>
	Tue, 28 May 2024 12:37:27 +0000 (13:37 +0100)
commit	d9dd9afc9354e739954f55db85af7401ec9ca6ba
tree	46044692ed49951e15d0e06b8c347965b4d37a4c	tree \| snapshot
parent	e5093133c35ca82874ad83697af76f4b0f7e3bd8	commit \| diff

Set rl->packet to NULL after we've finished using it

In order to ensure we do not have a UAF we reset the rl->packet pointer
to NULL after we free it.

Follow on from CVE-2024-4741

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24395)

(cherry picked from commit bfb8128190632092b3a66465838b87b469455cec)

ssl/record/methods/tls_common.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom