Undefined behaviour in ssl_session_calculate_timeout() in 3.1/3.0 #24046
Labels
branch: 3.0
Merge to openssl-3.0 branch
branch: 3.1
Merge to openssl-3.1
triaged: bug
The issue/pr is/fixes a bug
The function
ssl_session_calculate_timeout
adds a time to a timeout value but does not check for possible overflow in 3.1/3.0. Therefore setting a very large timeout value usingSSL_SESSION_set_timeout
can cause undefined behaviour.This is not the case in 3.2/3.3/master where we do the addition safely.
The text was updated successfully, but these errors were encountered: