Ything-RepoMirrors/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2026-01-25 02:56:43 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
8b8226e582c0d465a0304af97c4a41fb07d3d65c
openssl/ssl
History
Tomas Mraz 366fd8bae8 dtls_get_reassembled_message(): Fix potential use-after-realloc 
Fortunately due to the initial size of the allocated
buffer and the limit for unfragmented DTLS record size
the use-after-realloc cannot be triggered.

But we fix the potentially problematic code anyway.

Reported Joshua Rogers. It was found with the ZeroPath security
tooling.

Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/29278)

(cherry picked from commit 6d1d85c31b)
2025-12-03 15:29:17 +01:00
..
quic
quic/quic_demux: Mirror int overflow check from demux_alloc_urxe into demux_resize_urxe
2025-11-17 08:43:41 -05:00
record
Copyright year updates
2025-09-30 12:35:36 +00:00
rio
ossl_rio_poll_builder_add_fd(): Fixup pfds after reallocation
2025-06-13 12:39:20 +02:00
statem
dtls_get_reassembled_message(): Fix potential use-after-realloc
2025-12-03 15:29:17 +01:00
bio_ssl.c
Copyright year updates
2025-03-12 13:35:59 +00:00
build.info
Move ssl_err.c into libcrypto
2025-03-01 14:46:03 -05:00
d1_lib.c
Fix wrong buffer and version in outgoing msg callback
2025-10-17 19:07:13 +02:00
d1_msg.c
Copyright year updates
2025-03-12 13:35:59 +00:00
d1_srtp.c
Copyright year updates
2025-03-12 13:35:59 +00:00
methods.c
Update some inclusions of <openssl/macros.h>
2019-11-07 11:37:25 +01:00
pqueue.c
Stop raising ERR_R_MALLOC_FAILURE in most places
2022-10-05 14:02:03 +02:00
priority_queue.c
Copyright year updates
2024-09-05 09:35:49 +02:00
s3_enc.c
Copyright year updates
2025-03-12 13:35:59 +00:00
s3_lib.c
s3_lib.c: Use illegal_parameter for failing encapsulation in ml_kem
2025-05-16 11:11:22 +02:00
s3_msg.c
Copyright year updates
2025-03-12 13:35:59 +00:00
ssl_asn1.c
RFC7250 (RPK) support
2023-03-28 13:49:54 -04:00
ssl_cert_comp.c
Copyright year updates
2025-03-12 13:35:59 +00:00
ssl_cert_table.h
Make ssl_cert_info read-only
2023-11-27 07:51:33 +00:00
ssl_cert.c
Rename SSL_CERT_LOOKUP.nid to pkey_nid
2025-10-30 19:08:58 +01:00
ssl_ciph.c
Copyright year updates
2025-03-12 13:35:59 +00:00
ssl_conf.c
Ignore RecordPadding option in config file for QUIC objects
2025-11-25 05:43:01 -05:00
ssl_err_legacy.c
Copyright year updates
2025-03-12 13:35:59 +00:00
ssl_init.c
Copyright year updates
2025-03-12 13:35:59 +00:00
ssl_lib.c
Add SSL_CTX_is_quic API
2025-11-25 05:42:59 -05:00
ssl_local.h
Rename SSL_CERT_LOOKUP.nid to pkey_nid
2025-10-30 19:08:58 +01:00
ssl_mcnf.c
Copyright year updates
2024-09-05 09:35:49 +02:00
ssl_rsa_legacy.c
Copyright year updates
2025-03-12 13:35:59 +00:00
ssl_rsa.c
Fix the abnormal branch memory leak in ssl_set_cert_and_key function
2025-09-23 16:36:43 +02:00
ssl_sess.c
Stop a TLSv1.3 server emitting an unsolicited PSK extension
2025-05-13 14:12:48 +02:00
ssl_stat.c
Copyright year updates
2025-03-12 13:35:59 +00:00
ssl_txt.c
Copyright year updates
2024-09-05 09:35:49 +02:00
ssl_utst.c
Remove the old buffer management code
2022-10-20 14:39:33 +01:00
t1_enc.c
Copyright year updates
2025-03-12 13:35:59 +00:00
t1_lib.c
Do not make key share choice in tls1_set_groups()
2025-11-28 17:32:17 +01:00
t1_trce.c
Updated SSL Trace to display the name for all MLKEM-based groups
2025-09-18 17:27:45 +02:00
tls13_enc.c
Ensure client read app data secret change occurs after write for QUIC
2025-06-03 17:08:40 +01:00
tls_depr.c
Copyright year updates
2025-03-12 13:35:59 +00:00
tls_srp.c
Copyright year updates
2025-03-12 13:35:59 +00:00