nhyatt/putty-source
1
0
Fork 0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-03-16 12:03:03 -05:00
Code Issues Projects Releases Wiki Activity

Fix segfault if the server maliciously sends the wrong type of key

Browse Source 
after a different type has been agreed.

[originally from svn r1165]
This commit is contained in:
Simon Tatham 2001-08-04 12:37:43 +00:00
parent a4c1aad9b2
commit 4fb01728e1
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
ssh.c
View File

@ -2955,8 +2955,9 @@ static int do_ssh2_transport(unsigned char *in, int inlen, int ispkt)
#endif #endif
hkey = hostkey->newkey(hostkeydata, hostkeylen); hkey = hostkey->newkey(hostkeydata, hostkeylen);
if (!hostkey->verifysig(hkey, sigdata, siglen, exchange_hash, 20)) { if (!hkey ||
bombout(("Server failed host key check")); !hostkey->verifysig(hkey, sigdata, siglen, exchange_hash, 20)) {
bombout(("Server's host key did not match the signature supplied"));
crReturn(0); crReturn(0);
} }