Attachment #154341: openssl-0.9.8g-CVE-2008-0891.patch for bug #223429

 Changes between 0.9.8g and 0.9.8h  [xx XXX xxxx]

 Changes between 0.9.8g and 0.9.8h  [xx XXX xxxx]

  *) Fix BN flag handling in RSA_eay_mod_exp() and BN_MONT_CTX_set()

  *) Fix BN flag handling in RSA_eay_mod_exp() and BN_MONT_CTX_set()

     to get the expected BN_FLG_CONSTTIME behavior.

     to get the expected BN_FLG_CONSTTIME behavior.

     [Bodo Moeller (Google)]

     [Bodo Moeller (Google)]

						s->session->tlsext_hostname[len]='\0';

						s->session->tlsext_hostname[len]='\0';

						if (strlen(s->session->tlsext_hostname) != len) {

						if (strlen(s->session->tlsext_hostname) != len) {

							OPENSSL_free(s->session->tlsext_hostname);

							OPENSSL_free(s->session->tlsext_hostname);

							*al = TLS1_AD_UNRECOGNIZED_NAME;

							*al = TLS1_AD_UNRECOGNIZED_NAME;

							return 0;

							return 0;

						}

						}