Attachment #154341 for bug #223429

Lines 4-9 Link Here

(-)CHANGES (+3 lines)
4		4
5	Changes between 0.9.8g and 0.9.8h [xx XXX xxxx]	5	Changes between 0.9.8g and 0.9.8h [xx XXX xxxx]
6		6
		7	*) Fix double free in TLS server name extensions which could lead to a remote
		8	crash found by Codenomicon TLS test suite (CVE-2008-0891) [Joe Orton]
		9
7	*) Fix BN flag handling in RSA_eay_mod_exp() and BN_MONT_CTX_set()	10	*) Fix BN flag handling in RSA_eay_mod_exp() and BN_MONT_CTX_set()
8	to get the expected BN_FLG_CONSTTIME behavior.	11	to get the expected BN_FLG_CONSTTIME behavior.
9	[Bodo Moeller (Google)]	12	[Bodo Moeller (Google)]

Lines 381-386 Link Here

(-)ssl/t1_lib.c (+1 lines)
381	s->session->tlsext_hostname[len]='\0';	381	s->session->tlsext_hostname[len]='\0';
382	if (strlen(s->session->tlsext_hostname) != len) {	382	if (strlen(s->session->tlsext_hostname) != len) {
383	OPENSSL_free(s->session->tlsext_hostname);	383	OPENSSL_free(s->session->tlsext_hostname);
		384	s->session->tlsext_hostname = NULL;
384	*al = TLS1_AD_UNRECOGNIZED_NAME;	385	*al = TLS1_AD_UNRECOGNIZED_NAME;
385	return 0;	386	return 0;
386	}	387	}

Return to bug 223429