rpms / openssl

Clone
Source Code
GIT

Blame SOURCES/openssl-1.0.1e-cve-2016-2106.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8 c8-beta c8s c9 c9-beta
  1.   653b37a36fcfa8d53d73e34d10ac70e7aaafba1c
  2.   SOURCES
  3.   openssl-1.0.1e-cve-2016-2106.patch
Blob History Raw
5fee79 
diff -up openssl-1.0.1e/crypto/evp/evp_enc.c.enc-overflow openssl-1.0.1e/crypto/evp/evp_enc.c
5fee79 
--- openssl-1.0.1e/crypto/evp/evp_enc.c.enc-overflow	2016-04-29 12:42:43.000000000 +0200
5fee79 
+++ openssl-1.0.1e/crypto/evp/evp_enc.c	2016-04-29 12:56:50.253736555 +0200
5fee79 
@@ -408,7 +408,7 @@ int EVP_EncryptUpdate(EVP_CIPHER_CTX *ct
5fee79 
 	OPENSSL_assert(bl <= (int)sizeof(ctx->buf));
5fee79 
 	if (i != 0)
5fee79 
 		{
5fee79 
-		if (i+inl < bl)
5fee79 
+		if (bl - i > inl)
5fee79 
 			{
5fee79 
 			memcpy(&(ctx->buf[i]),in,inl);
5fee79 
 			ctx->buf_len+=inl;

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation