projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1dfa62d) | patch
Don't try and verify signatures if key is NULL (CVE-2013-0166)
authorDr. Stephen Henson <steve@openssl.org>
Thu, 24 Jan 2013 13:30:42 +0000 (13:30 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Tue, 5 Feb 2013 16:46:15 +0000 (16:46 +0000)
commitebc71865f0506a293242bd4aec97cdc7a8ef24b0
treedb65464c6800141aa8abbe2a2764b80268af1b75tree | snapshot
parent1dfa62d4c871a9007904812e06bdddb2d530ff64commit | diff
Don't try and verify signatures if key is NULL (CVE-2013-0166)
Add additional check to catch this in ASN1_item_verify too.
CHANGES diff | blob | history
crypto/asn1/a_verify.c diff | blob | history
crypto/ocsp/ocsp_vfy.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.