Commit Graph

4 Commits

Author SHA1 Message Date
Povilas Kanapickas e32cc609e2 lib/net: Fix incorrect sharing of data between different SSL sessions
(cherry picked from commit f0efe043bb)
2021-11-01 18:06:54 +02:00
Povilas Kanapickas 1c1e83c942 lib/net: Fix race conditions when closing SSL connections
This fixes the following security vulnerability:
- CVE-2021-42074 SIGSEGV on quick open/close sequence while sending
Hello message

The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.
2021-11-01 17:43:35 +02:00
Povilas Kanapickas ceecc61388 lib/server: Close connection when client app-level handshake fails
This fixes the following security vulnerability:
 - CVE-2021-42075 DoS via file descriptor exhaustion

The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.

(cherry picked from commit deefecc262)
2021-11-01 17:41:06 +02:00
Povilas Kanapickas f546af4a85 lib: Enforce a maximum length of input messages
This commit is the 1/3 part of the fix for the following security
vulnerability:
 - CVE-2021-42076 DoS via excess length messages

The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.

(cherry picked from commit e33c81b835)
2021-11-01 17:39:42 +02:00