K 10
svn:author
V 5
simon
K 8
svn:date
V 27
2009-08-29T15:21:50.131914Z
K 7
svn:log
V 553
MFC r196474:

  Merge DTLS fixes from vendor-crypto/openssl/dist:

  - Fix memory consumption bug with "future epoch" DTLS records.
  - Fix fragment handling memory leak.
  - Do not access freed data structure.
  - Fix DTLS fragment bug - out-of-sequence message handling which could
    result in NULL pointer dereference in
    dtls1_process_out_of_seq_message().

  Note that this will not get FreeBSD Security Advisory as DTLS is
  experimental in OpenSSL.

  Security:	CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1387

Approved by:	re (kib)

END