SOURCES (RA-branch): openssl-CAN-2005-2969.patch (NEW) - CAN-2005-...

qboosh qboosh at pld-linux.org
Wed Oct 12 13:31:04 CEST 2005


Author: qboosh                       Date: Wed Oct 12 11:31:04 2005 GMT
Module: SOURCES                       Tag: RA-branch
---- Log message:
- CAN-2005-2969 fix from http://www.openssl.org/news/patch-CAN-2005-2969.txt

---- Files affected:
SOURCES:
   openssl-CAN-2005-2969.patch (NONE -> 1.1.2.1)  (NEW)

---- Diffs:

================================================================
Index: SOURCES/openssl-CAN-2005-2969.patch
diff -u /dev/null SOURCES/openssl-CAN-2005-2969.patch:1.1.2.1
--- /dev/null	Wed Oct 12 13:31:04 2005
+++ SOURCES/openssl-CAN-2005-2969.patch	Wed Oct 12 13:30:59 2005
@@ -0,0 +1,13 @@
+--- ssl/s23_srvr.c	25 Sep 2002 15:36:09 -0000	1.32.2.5
++++ ssl/s23_srvr.c	11 Oct 2005 00:00:00 -0000
+@@ -575,9 +575,7 @@
+ 			}
+ 
+ 		s->state=SSL2_ST_GET_CLIENT_HELLO_A;
+-		if ((s->options & SSL_OP_MSIE_SSLV2_RSA_PADDING) ||
+-			use_sslv2_strong ||
+-			(s->options & SSL_OP_NO_TLSv1 && s->options & SSL_OP_NO_SSLv3))
++		if (s->options & SSL_OP_NO_TLSv1 && s->options & SSL_OP_NO_SSLv3)
+ 			s->s2->ssl2_rollback=0;
+ 		else
+ 			/* reject SSL 2.0 session if client supports SSL 3.0 or TLS 1.0
================================================================



More information about the pld-cvs-commit mailing list