package/openssl/patches/900-CVE-2009-1379.patch

   1 --- a/ssl/d1_both.c
   2 +++ b/ssl/d1_both.c
   3 @@ -519,6 +519,7 @@ dtls1_retrieve_buffered_fragment(SSL *s,
   4
   5         if ( s->d1->handshake_read_seq == frag->msg_header.seq)
   6                 {
   7 +               unsigned long frag_len = frag->msg_header.frag_len;
   8                 pqueue_pop(s->d1->buffered_messages);
   9
  10                 al=dtls1_preprocess_fragment(s,&frag->msg_header,max);
  11 @@ -536,7 +537,7 @@ dtls1_retrieve_buffered_fragment(SSL *s,
  12                 if (al==0)
  13                         {
  14                         *ok = 1;
  15 -                       return frag->msg_header.frag_len;
  16 +                       return frag_len;
  17                         }
  18
  19                 ssl3_send_alert(s,SSL3_AL_FATAL,al);