[Patch 2/5] dtls1_new: Use correct pointer to determine cookie length

Bernhard Michael Mon, 15 Sep 2008 09:35:17 -0700

This is actually a null pointer dereference which never happened.


--
Index: ssl/d1_lib.c
===================================================================
RCS file: /v/openssl/cvs/openssl/ssl/d1_lib.c,v
retrieving revision 1.7
diff -u -r1.7 d1_lib.c
--- ssl/d1_lib.c        5 Oct 2007 21:04:56 -0000       1.7
+++ ssl/d1_lib.c        15 Sep 2008 11:35:29 -0000
@@ -101,7 +101,7 @@

        if ( s->server)
                {
-               d1->cookie_len = sizeof(s->d1->cookie);
+               d1->cookie_len = sizeof(d1->cookie);
                }

if( ! d1->unprocessed_rcds.q || ! d1->processed_rcds.q______________________________________________________________________

OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       [email protected]
Automated List Manager                           [EMAIL PROTECTED]

[Patch 2/5] dtls1_new: Use correct pointer to determine cookie length

Reply via email to