git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Matt Caswell <matt@openssl.org>
	Tue, 23 Apr 2024 15:34:46 +0000 (16:34 +0100)
committer	Matt Caswell <matt@openssl.org>
	Tue, 28 May 2024 12:28:13 +0000 (13:28 +0100)
commit	38690cab18de88198f46478565fab423cf534efa
tree	350eca2987f79178db031526d246a0a18ca0f568	tree \| snapshot
parent	da9342ed5edabfbbd658e35f6bad1831682cc7e7	commit \| diff

Only free the read buffers if we're not using them

If we're part way through processing a record, or the application has
not released all the records then we should not free our buffer because
they are still needed.

CVE-2024-4741

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24395)

ssl/record/methods/tls_common.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom