1 files changed, 53 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssl/openssl/CVE-2016-6302.patch b/meta/recipes-connectivity/openssl/openssl/CVE-2016-6302.patch
new file mode 100644
index 0000000000..a72ee700bc
--- /dev/null
+++ b/meta/recipes-connectivity/openssl/openssl/CVE-2016-6302.patch
@@ -0,0 +1,53 @@
+From baaabfd8fdcec04a691695fad9a664bea43202b6 Mon Sep 17 00:00:00 2001
+From: "Dr. Stephen Henson" <steve@openssl.org>
+Date: Tue, 23 Aug 2016 18:14:54 +0100
+Subject: [PATCH] Sanity check ticket length.
+If a ticket callback changes the HMAC digest to SHA512 the existing
+sanity checks are not sufficient and an attacker could perform a DoS
+attack with a malformed ticket. Add additional checks based on
+HMAC size.
+Thanks to Shi Lei for reporting this bug.
+CVE-2016-6302
+Reviewed-by: Rich Salz <rsalz@openssl.org>
+Upstream-Status: Backport
+CVE: CVE-2016-6302
+Signed-off-by: Armin Kuster <akuster@mvista.com>
+---
+ ssl/t1_lib.c | 11 ++++++++---
+ 1 file changed, 8 insertions(+), 3 deletions(-)
+Index: openssl-1.0.2h/ssl/t1_lib.c
+===================================================================
+--- openssl-1.0.2h.orig/ssl/t1_lib.c
+++ openssl-1.0.2h/ssl/t1_lib.c
+@@ -3397,9 +3397,7 @@ static int tls_decrypt_ticket(SSL *s, co
+     HMAC_CTX hctx;
+     EVP_CIPHER_CTX ctx;
+     SSL_CTX *tctx = s->initial_ctx;
+-    /* Need at least keyname + iv + some encrypted data */
+-    if (eticklen < 48)
+-        return 2;
+
+     /* Initialize session ticket encryption and HMAC contexts */
+     HMAC_CTX_init(&hctx);
+     EVP_CIPHER_CTX_init(&ctx);
+@@ -3433,6 +3431,13 @@ static int tls_decrypt_ticket(SSL *s, co
+     if (mlen < 0) {
+         goto err;
+     }
+    /* Sanity check ticket length: must exceed keyname + IV + HMAC */
+    if (eticklen <= 16 + EVP_CIPHER_CTX_iv_length(&ctx) + mlen) {
+        HMAC_CTX_cleanup(&hctx);
+        EVP_CIPHER_CTX_cleanup(&ctx);
+        return 2;
+    }
+
+     eticklen -= mlen;
+     /* Check HMAC of encrypted ticket */
+     if (HMAC_Update(&hctx, etick, eticklen) <= 0

diff --git a/meta/recipes-connectivity/openssl/openssl/CVE-2016-6302.patch b/meta/recipes-connectivity/openssl/openssl/CVE-2016-6302.patch new file mode 100644 index 0000000000..a72ee700bc --- /dev/null +++ b/meta/recipes-connectivity/openssl/openssl/CVE-2016-6302.patch
@@ -0,0 +1,53 @@
	1	From baaabfd8fdcec04a691695fad9a664bea43202b6 Mon Sep 17 00:00:00 2001
	2	From: "Dr. Stephen Henson" <steve@openssl.org>
	3	Date: Tue, 23 Aug 2016 18:14:54 +0100
	4	Subject: [PATCH] Sanity check ticket length.
	5
	6	If a ticket callback changes the HMAC digest to SHA512 the existing
	7	sanity checks are not sufficient and an attacker could perform a DoS
	8	attack with a malformed ticket. Add additional checks based on
	9	HMAC size.
	10
	11	Thanks to Shi Lei for reporting this bug.
	12
	13	CVE-2016-6302
	14
	15	Reviewed-by: Rich Salz <rsalz@openssl.org>
	16
	17	Upstream-Status: Backport
	18	CVE: CVE-2016-6302
	19	Signed-off-by: Armin Kuster <akuster@mvista.com>
	20
	21	---
	22	ssl/t1_lib.c \| 11 ++++++++---
	23	1 file changed, 8 insertions(+), 3 deletions(-)
	24
	25	Index: openssl-1.0.2h/ssl/t1_lib.c
	26	===================================================================
	27	--- openssl-1.0.2h.orig/ssl/t1_lib.c
	28	+++ openssl-1.0.2h/ssl/t1_lib.c
	29	@@ -3397,9 +3397,7 @@ static int tls_decrypt_ticket(SSL *s, co
	30	HMAC_CTX hctx;
	31	EVP_CIPHER_CTX ctx;
	32	SSL_CTX *tctx = s->initial_ctx;
	33	- /* Need at least keyname + iv + some encrypted data */
	34	- if (eticklen < 48)
	35	- return 2;
	36	+
	37	/* Initialize session ticket encryption and HMAC contexts */
	38	HMAC_CTX_init(&hctx);
	39	EVP_CIPHER_CTX_init(&ctx);
	40	@@ -3433,6 +3431,13 @@ static int tls_decrypt_ticket(SSL *s, co
	41	if (mlen < 0) {
	42	goto err;
	43	}
	44	+ /* Sanity check ticket length: must exceed keyname + IV + HMAC */
	45	+ if (eticklen <= 16 + EVP_CIPHER_CTX_iv_length(&ctx) + mlen) {
	46	+ HMAC_CTX_cleanup(&hctx);
	47	+ EVP_CIPHER_CTX_cleanup(&ctx);
	48	+ return 2;
	49	+ }
	50	+
	51	eticklen -= mlen;
	52	/* Check HMAC of encrypted ticket */
	53	if (HMAC_Update(&hctx, etick, eticklen) <= 0