projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8e91b3d) | patch
SSL_check_chain fix
authorMatt Caswell <matt@openssl.org>
Wed, 11 Mar 2015 17:01:38 +0000 (17:01 +0000)
committerMatt Caswell <matt@openssl.org>
Thu, 12 Mar 2015 09:29:48 +0000 (09:29 +0000)
commit327de270d583e716bc0282dd0d59e133f41d7ada
treecc16236b695df46b10368f81912cf8471cfd4020tree | snapshot
parent8e91b3d99115121765a15dbb685aa772b73b97adcommit | diff
SSL_check_chain fix

If SSL_check_chain is called with a NULL X509 object or a NULL EVP_PKEY
or the type of the public key is unrecognised then the local variable
|cpk| in tls1_check_chain does not get initialised. Subsequently an
attempt is made to deref it (after the "end" label), and a seg fault will
result.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
(cherry picked from commit d813f9eb383a93e472e69750cd1edbb170205ad2)
ssl/t1_lib.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.