projects / BearSSL / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8f795e5) | patch
Fixed bug in handling incoming records with invalid length (impacted CBC encryption... master
authorThomas Pornin <thomas.pornin@nccgroup.com>
Mon, 6 Apr 2026 13:40:05 +0000 (09:40 -0400)
committerThomas Pornin <thomas.pornin@nccgroup.com>
Mon, 6 Apr 2026 13:40:05 +0000 (09:40 -0400)
commit7bea48e5e850ab4cafbe68d3765cdaba13a86d6f
treea8f933a27b14eaf3a348fe9b294bf4262dbb216ctree | snapshot
parent8f795e5feef3685595a6f6e58bc1b7b1b346cfe5commit | diff
Fixed bug in handling incoming records with invalid length (impacted CBC encryption with 3DES or with the aes_small or aes_big AES implementations; only 3DES was selectable by default).

Bug was reported by Thai Duong at Calif.io (with some AI stuff from Anthropic Research).
src/ssl/ssl_rec_cbc.c diff | blob | history
The BearSSL library and tools.