
<div dir="ltr">Special credit to: Etienne Stalmans (SP) <<a href="mailto:etienne@sensepost.com">etienne@sensepost.com</a>> for reporting the segfault in a first place!</div><div class="gmail_extra"><br><div class="gmail_quote">On Sat, Apr 11, 2015 at 5:37 PM, Fedor Indutny via RT <span dir="ltr"><<a href="mailto:rt@openssl.org" target="_blank">rt@openssl.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="HOEnZb"><div class="h5">Hello!<br>

<br>

aes-128-cbc-hmac-sha1, aes-256-cbc-hmac-sha1 ciphers expect the AEAD<br>

payload, but fail to operate if it wasn't supplied. In fact, in case of<br>

absent payload - `plen` is going to be `NO_PAYLOAD_LENGTH` and the<br>

memory will be corrupted (which sometimes leads to the crash).<br>

<br>

NOTE: 41cf2d2518f8b7f31287984ea9f13bc9d55205dc implicitly fixes this<br>

in 1.0.2, so this commit could be considered to be a partial back-port<br>

of that one.<br>

<br>

Attached is the suggested patch.<br>

<br>

Thank you,<br>

Fedor.<br>

<br>

</div></div><br>-----BEGIN PGP SIGNATURE-----<br>

Version: GnuPG v1<br>

<br>

iQIcBAABAgAGBQJVKRE0AAoJENcGPM4Zt+iQKKwP/jyRhiNNMy7YVrvHTA/bF02a<br>

PatvQGulRJvOPw0IzB8YydAsJbrBnYrVx1eniBv+5vjcA/9Tbc3yo0drIZR+um9N<br>

z0ky4lDmQnIW5JHMhWkw55kEqpnV16rw5AeMfg4aNhFm/5m0tNHyb5Ft9Epu9hh0<br>

kLV7RGKKmdPP/3FUKtQNictKUAcESZaIJeDeB24XKTOzAuSdPEunfST0tQG6qjtL<br>

Chj2XrtFDJb+eonjWQmq2RZb67q2qituTOsuqv+e26mgulocnDanrRXetUiTyhDD<br>

fjBNXBSUHME/xmfD5ffJR/eSnzY/Xzg7E14n4S4ctIPpfZ/3ked86wCj+PC1RGT1<br>

Xt8lIhWwBzxDGn0161vMpFK59zWdFYBR+V6X0ubCO44F0ZfnExWAtxlr2/YkJyCS<br>

HYMgJEZEyIp4qt9ubJ3gOFn7r5Dzo+Dc/hi2xmEneISiYvnu5ugjh4cQU/SQxy8c<br>

GYI1KDbvhz0K/Z/qs/ByaSeYlcE5ZVanbvb8YyqtIAsRklaVzfapssMBMcWUTYcX<br>

P6lt9sAmC7/wNdXvTMCUZoLS1Gz5HX5rmfdquT82kRWI5VYfN5qwWWwz1nN3VNcb<br>

kyBf9NX1FJ/7tzQmYPDGNgif09vwPVD0x3q5gA5WYnrP/JZL6JYQpT9gHH7lz7Lv<br>

pl3+vgsqfHkGs0I+W6Hy<br>

=GkP4<br>

-----END PGP SIGNATURE-----<br>

<br>_______________________________________________<br>

openssl-dev mailing list<br>

To unsubscribe: <a href="https://mta.openssl.org/mailman/listinfo/openssl-dev" target="_blank">https://mta.openssl.org/mailman/listinfo/openssl-dev</a><br>

<br></blockquote></div><br></div>