Correct a denial-of-service vulnerability in OpenSSL (CAN-2004-0079).

Obtained from: OpenSSL CVS (http://cvs.openssl.org/chngview?cn=12033)
svn path=/vendor-crypto/openssl/dist/; revision=127114
2025-01-01 12:19:28 +00:00 · 2004-03-17 12:11:08 +00:00 · 2004-03-17 12:11:08 +00:00 · 81ac585294 · 2020-12-20 02:59:44 +00:00
commit 81ac585294
parent 50ef009353
1 changed files with 8 additions and 0 deletions
--- a/crypto/openssl/ssl/s3_pkt.c
+++ b/crypto/openssl/ssl/s3_pkt.c
@ -1085,6 +1085,14 @@ int ssl3_read_bytes(SSL *s, int type, unsigned char *buf, int len, int peek)
 			goto err;
 			}

+		/* Check we have a cipher to change to */
+		if (s->s3->tmp.new_cipher == NULL)
+			{
+			i=SSL_AD_UNEXPECTED_MESSAGE;
+			SSLerr(SSL_F_SSL3_GET_CERT_VERIFY,SSL_R_CCS_RECEIVED_EARLY);
+			goto err;
+			}
+
 		rr->length=0;

 		if (s->msg_callback)