git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Matt Caswell <matt@openssl.org>
	Tue, 8 Aug 2023 13:05:58 +0000 (14:05 +0100)
committer	Matt Caswell <matt@openssl.org>
	Tue, 15 Aug 2023 13:41:31 +0000 (14:41 +0100)
commit	643f542a89bee93e043d0899b2a1ca700d1cc418
tree	69615d9468f20f77e7aadf51b592a32c7bc48fe8	tree \| snapshot
parent	644ef0bb696eeaf3572e858b2beeca17b0621a3f	commit \| diff

Fix a use-after-free in quic_tls.c

The comments in quic_tls.c claimed that the dummybio was never used by
us. In fact that is not entirely correct since we set and cleared the
retry flags on it. This means that we have to manage it properly, and update
it in the event of set1_bio() call on the record layer method.

Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/21686)

ssl/quic/quic_tls.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom