Last Modified: Nov 14, 2022
Opened: Jul 11, 2013
Severity: 3-Major
Related Article:
K16141
Connection hangs with AES and DES ciphers and option "Don’t insert empty fragments" disabled. The connection with AES256-SHA is hanging when using SSLv3 or TLSv1.0.
connection hangs
This issue happens specifically when option "Don’t insert empty fragments" is disabled. client: openssl server: apache.
None
Do not send empty fragment for TLS 1.1 and 1.2 on block ciphers. Only send empty fragment when we are going to send any egress data.