e4e2190aed
Fix devfs rules not applied by default for jails. [SA-14:07] Fix OpenSSL use-after-free vulnerability. [SA-14:08] Fix TCP reassembly vulnerability. [SA-14:09]
13 lines
450 B
Diff
13 lines
450 B
Diff
Index: crypto/openssl/ssl/s3_pkt.c
|
|
===================================================================
|
|
--- crypto/openssl/ssl/s3_pkt.c (revision 265054)
|
|
+++ crypto/openssl/ssl/s3_pkt.c (working copy)
|
|
@@ -1055,7 +1055,7 @@ start:
|
|
{
|
|
s->rstate=SSL_ST_READ_HEADER;
|
|
rr->off=0;
|
|
- if (s->mode & SSL_MODE_RELEASE_BUFFERS)
|
|
+ if (s->mode & SSL_MODE_RELEASE_BUFFERS && s->s3->rbuf.left == 0)
|
|
ssl3_release_read_buffer(s);
|
|
}
|
|
}
|