34e1cce Correctly handle disabled ciphers

Authored and Committed by rcritten 8 years ago
    Correctly handle disabled ciphers
    
    A cipher value could be -1, 0 or 1 meaning completely disabled,
    disabled and enabled. A -1 passed to SSL_CipherPrefSet() could
    cause a cipher to actually be enabled. Now pass PR_TRUE if
    the cipher is enabled otherwise pass PR_FALSE.
    
    Fix CVE-2015-5244
    
        
file modified
+1 -1