freebsd-skq/crypto/openssl/ssl
Simon L. B. Nielsen 0a70456882 Fix Incorrectly formatted ClientHello SSL/TLS handshake messages could
cause OpenSSL to parse past the end of the message.

Note: Applications are only affected if they act as a server and call
SSL_CTX_set_tlsext_status_cb on the server's SSL_CTX. This includes
Apache httpd >= 2.3.3, if configured with "SSLUseStapling On".

Security:	http://www.openssl.org/news/secadv_20110208.txt
Security:	CVE-2011-0014
Obtained from:	OpenSSL CVS
2011-02-12 21:30:46 +00:00
..
bio_ssl.c
d1_both.c
d1_clnt.c
d1_enc.c
d1_lib.c
d1_meth.c
d1_pkt.c
d1_srvr.c
dtls1.h
kssl_lcl.h
kssl.c
kssl.h
Makefile
s2_clnt.c
s2_enc.c
s2_lib.c
s2_meth.c
s2_pkt.c
s2_srvr.c
s3_both.c
s3_clnt.c
s3_enc.c
s3_lib.c
s3_meth.c
s3_pkt.c
s3_srvr.c
s23_clnt.c
s23_lib.c
s23_meth.c
s23_pkt.c
s23_srvr.c
ssl2.h
ssl3.h
ssl23.h
ssl_algs.c
ssl_asn1.c
ssl_cert.c
ssl_ciph.c
ssl_err2.c
ssl_err.c
ssl_lib.c
ssl_locl.h
ssl_rsa.c
ssl_sess.c
ssl_stat.c
ssl_task.c
ssl_txt.c
ssl.h
ssltest.c
t1_clnt.c
t1_enc.c
t1_lib.c
t1_meth.c
t1_reneg.c
t1_srvr.c
tls1.h