projects
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
358ffa0
)
Zero-fill IV by default.
author
Rich Salz
<rsalz@openssl.org>
Thu, 28 Jun 2018 22:13:54 +0000
(18:13 -0400)
committer
Rich Salz
<rsalz@openssl.org>
Thu, 28 Jun 2018 22:13:54 +0000
(18:13 -0400)
Fixes uninitialized memory read reported by Nick Mathewson
Reviewed-by: Tim Hudson <tjh@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/6603)
crypto/pem/pem_lib.c
patch
|
blob
|
history
diff --git
a/crypto/pem/pem_lib.c
b/crypto/pem/pem_lib.c
index 7c82561ba40ee53031aab3af03325a904675e1fc..5c21a868466f5661ac4fc97bfe544fcb6efa05de 100644
(file)
--- a/
crypto/pem/pem_lib.c
+++ b/
crypto/pem/pem_lib.c
@@
-488,6
+488,7
@@
int PEM_get_EVP_CIPHER_INFO(char *header, EVP_CIPHER_INFO *cipher)
char *dekinfostart, c;
cipher->cipher = NULL;
+ memset(cipher->iv, 0, sizeof(cipher->iv));
if ((header == NULL) || (*header == '\0') || (*header == '\n'))
return 1;
projects / openssl.git / commitdiff