diff options
| author | Nick Mathewson <nickm@torproject.org> | 2012-02-10 10:55:39 -0500 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2012-02-10 10:55:39 -0500 |
| commit | 2da0efb547b70a7caed59097036d1e59859a4b35 (patch) | |
| tree | 70726778919c04bdfb8d436d17fe594a95a2981a /src/common | |
| parent | a70ff4b2cba8a46a402b5add5cee31ce5f8a0836 (diff) | |
| download | tor-2da0efb547b70a7caed59097036d1e59859a4b35.tar.gz tor-2da0efb547b70a7caed59097036d1e59859a4b35.zip | |
Use correct CVE number for CVE-2011-4576. Found by fermenthor. bug 5066
Diffstat (limited to 'src/common')
| -rw-r--r-- | src/common/tortls.c | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/src/common/tortls.c b/src/common/tortls.c index d766377dcb..4c9d2188d4 100644 --- a/src/common/tortls.c +++ b/src/common/tortls.c @@ -72,7 +72,7 @@ (OPENSSL_VERSION_NUMBER >= 0x00909000L && \ OPENSSL_VERSION_NUMBER < 0x1000006fL)) /* This is a version of OpenSSL before 0.9.8s/1.0.0f. It does not have - * the CVE-2011-4657 fix, and as such it can't use RELEASE_BUFFERS and + * the CVE-2011-4576 fix, and as such it can't use RELEASE_BUFFERS and * SSL3 safely at the same time. */ #define DISABLE_SSL3_HANDSHAKE @@ -797,9 +797,9 @@ tor_tls_context_new(crypto_pk_env_t *identity, unsigned int key_lifetime, SSLeay() < 0x0090813fL || (SSLeay() >= 0x00909000L && SSLeay() < 0x1000006fL)) { - /* And not SSL3 if it's subject to CVE-2011-4657. */ + /* And not SSL3 if it's subject to CVE-2011-4576. */ log_info(LD_NET, "Disabling SSLv3 because this OpenSSL version " - "might otherwise be vulnerable to CVE-2011-4657 " + "might otherwise be vulnerable to CVE-2011-4576 " "(compile-time version %08lx (%s); " "runtime version %08lx (%s))", (unsigned long)OPENSSL_VERSION_NUMBER, OPENSSL_VERSION_TEXT, |