[SERVER-47373] Improve handling of empty TLS packets - MongoDB Jira

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major - P3
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.0.19, 4.2.7, 4.4.0-rc4, 4.7.0
Component/s: None
Labels:
None

Backwards Compatibility:
Fully Compatible
Operating System:
ALL
Backport Requested:

v4.4, v4.2, v4.0
Sprint:
Security 2020-04-20
Linked BF Score:
16

Description

It is valid to send an empty TLS packet, a packet with just a header and footer but no application data. The Window SSL stack does not handle this correctly.

Attachments

Activity

People

Assignee:: Mark Benvenuto

Reporter:: Mark Benvenuto

Participants:: Githook User, Mark Benvenuto

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: Apr 06 2020 10:23:03 PM UTC

Updated:: Sep 08 2020 11:00:04 PM UTC

Resolved:: Apr 13 2020 05:48:54 PM UTC