Fix ssl_get_prev_session overrun

If OpenSSL is configured with no-tlsext then ssl_get_prev_session can read past the end of the ClientHello message if the session_id length in the ClientHello is invalid. This should not cause any security issues since the underlying buffer is 16k in size. It should never be possible to overrun by that many bytes. This is probably made redundant by the previous commit - but you can never be too careful. With thanks to Qinghao Tang for reporting this issue. Reviewed-by: N Rich Salz <rsalz@openssl.org>

Fix ssl_get_prev_session overrun
If OpenSSL is configured with no-tlsext then ssl_get_prev_session can read past the end of the ClientHello message if the session_id length in the ClientHello is invalid. This should not cause any security issues since the underlying buffer is 16k in size. It should never be possible to overrun by that many bytes. This is probably made redundant by the previous commit - but you can never be too careful. With thanks to Qinghao Tang for reporting this issue. Reviewed-by: N Rich Salz <rsalz@openssl.org>
5e0a80c1 · Matt Caswell · 5e9f0eeb · 5e0a80c1
隐藏空白更改
内联并排

Showing with 5 addition and 0 deletion

ssl/ssl_sess.c ssl/ssl_sess.c +5 -0

未找到文件。
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -442,6 +442,11 @@ int ssl_get_prev_session(SSL *s, unsigned char *session_id, int len,
    if (len > SSL_MAX_SSL_SESSION_ID_LENGTH)
        goto err;

+    if (session_id + len > limit) {
+        fatal = 1;
+        goto err;
+    }
+
    if (len == 0)
        try_session_cache = 0;