git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Viktor Dukhovni <openssl-users@dukhovni.org>
	Wed, 28 Aug 2024 10:36:09 +0000 (20:36 +1000)
committer	Tomas Mraz <tomas@openssl.org>
	Thu, 29 Aug 2024 17:32:00 +0000 (19:32 +0200)
commit	b4e4bf29ba3c67662c60ceed9afa2dd301e93273
tree	b027c2a60f246c8fdc7c74f800d56fdada8bf07d	tree
parent	25f5d7b85f6657cd2f9f1ab7ae87f319d9bafe54	commit \| diff

Check for excess data in CertificateVerify

As reported by Alicja Kario, we ignored excess bytes after the
signature payload in TLS CertificateVerify Messages. These
should not be present.

Fixes: #25298
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25302)

ssl/statem/statem_lib.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom