projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 06a549c) | patch
SRP_create_verifier does not check for NULL before OPENSSL_cleanse
authorMatt Caswell <matt@openssl.org>
Fri, 26 Aug 2016 14:14:24 +0000 (15:14 +0100)
committerMatt Caswell <matt@openssl.org>
Fri, 26 Aug 2016 19:40:37 +0000 (20:40 +0100)
commit7fb82d06746f7503323a7846448e095bf8f5ef9e
tree7503c144770f0cfbc2f4cdcb9af6ec2f55e59f66tree | snapshot
parent06a549c435d6095b33d78f136904c5fc2f7bcf24commit | diff
SRP_create_verifier does not check for NULL before OPENSSL_cleanse

OPENSSL_cleanse() does not validate its input parameter for NULL so
SRP_create_verifier() should do so instead. Otherwise a segfault will
result.

Alternative solution to GitHub PR#1006

Reviewed-by: Rich Salz <rsalz@openssl.org>
crypto/srp/srp_vfy.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.