info
Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
[openssl-dev] [openssl.org #4527] Bug in d2i_PrivateKey (openssl-1.1.0-pre5)
7 views
Skip to first unread message
Harry Reimann via RT
May 2, 2016, 8:34:42 AM5/2/16
to
There is a bug in the implementation of d2i_PrivateKey in
crypto/asn1/d2i_pr.c.
If the function is called with *a != NULL and returns NULL, the value of
*a is not changed, but the EVP_PKEY it refers to might have been freed or
not depending on whether line 100 was reached or not. If the caller makes
the wrong guess this can result in a crash due to a double free or in a
memory leak.
Best regards
Harry Reimann
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4527
Please log in as guest with password guest if prompted
--
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
crypto/asn1/d2i_pr.c.
If the function is called with *a != NULL and returns NULL, the value of
*a is not changed, but the EVP_PKEY it refers to might have been freed or
not depending on whether line 100 was reached or not. If the caller makes
the wrong guess this can result in a crash due to a double free or in a
memory leak.
Best regards
Harry Reimann
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4527
Please log in as guest with password guest if prompted
--
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
Stephen Henson via RT
May 4, 2016, 8:03:19 AM5/4/16
to
Fixed, thanks for the report.
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
0 new messages