From owner-cvs-src-old@FreeBSD.ORG Sat Aug 29 15:22:22 2009 Return-Path: Delivered-To: cvs-src-old@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AECAD106564A for ; Sat, 29 Aug 2009 15:22:22 +0000 (UTC) (envelope-from simon@FreeBSD.org) Received: from repoman.freebsd.org (repoman.freebsd.org [IPv6:2001:4f8:fff6::29]) by mx1.freebsd.org (Postfix) with ESMTP id 9BF848FC1E for ; Sat, 29 Aug 2009 15:22:22 +0000 (UTC) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.14.3/8.14.3) with ESMTP id n7TFMM6U019716 for ; Sat, 29 Aug 2009 15:22:22 GMT (envelope-from simon@repoman.freebsd.org) Received: (from svn2cvs@localhost) by repoman.freebsd.org (8.14.3/8.14.3/Submit) id n7TFMMMw019715 for cvs-src-old@freebsd.org; Sat, 29 Aug 2009 15:22:22 GMT (envelope-from simon@repoman.freebsd.org) Message-Id: <200908291522.n7TFMMMw019715@repoman.freebsd.org> X-Authentication-Warning: repoman.freebsd.org: svn2cvs set sender to simon@repoman.freebsd.org using -f From: "Simon L. Nielsen" Date: Sat, 29 Aug 2009 15:21:50 +0000 (UTC) To: cvs-src-old@freebsd.org X-FreeBSD-CVS-Branch: RELENG_8 Subject: cvs commit: src/crypto/openssl/crypto/pqueue pqueue.c pqueue.h src/crypto/openssl/ssl d1_both.c d1_pkt.c X-BeenThere: cvs-src-old@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: **OBSOLETE** CVS commit messages for the src tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Aug 2009 15:22:22 -0000 simon 2009-08-29 15:21:50 UTC FreeBSD src repository Modified files: (Branch: RELENG_8) crypto/openssl/crypto/pqueue pqueue.c pqueue.h crypto/openssl/ssl d1_both.c d1_pkt.c Log: SVN rev 196641 on 2009-08-29 15:21:50Z by simon MFC r196474: Merge DTLS fixes from vendor-crypto/openssl/dist: - Fix memory consumption bug with "future epoch" DTLS records. - Fix fragment handling memory leak. - Do not access freed data structure. - Fix DTLS fragment bug - out-of-sequence message handling which could result in NULL pointer dereference in dtls1_process_out_of_seq_message(). Note that this will not get FreeBSD Security Advisory as DTLS is experimental in OpenSSL. Security: CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1387 Approved by: re (kib) Revision Changes Path 1.1.1.1.10.1 +14 -0 src/crypto/openssl/crypto/pqueue/pqueue.c 1.1.1.1.10.1 +1 -0 src/crypto/openssl/crypto/pqueue/pqueue.h 1.2.2.1 +28 -17 src/crypto/openssl/ssl/d1_both.c 1.2.2.1 +4 -0 src/crypto/openssl/ssl/d1_pkt.c