Root/package/openssl/patches/400-cve-2010-0740.patch

1--- a/ssl/s3_pkt.c
2+++ b/ssl/s3_pkt.c
3@@ -291,9 +291,9 @@ again:
4             if (version != s->version)
5                 {
6                 SSLerr(SSL_F_SSL3_GET_RECORD,SSL_R_WRONG_VERSION_NUMBER);
7- /* Send back error using their
8- * version number :-) */
9- s->version=version;
10+ if ((s->version & 0xFF00) == (version & 0xFF00))
11+ /* Send back error using their minor version number :-) */
12+ s->version = (unsigned short)version;
13                 al=SSL_AD_PROTOCOL_VERSION;
14                 goto f_err;
15                 }
16

Archive Download this file



interactive