Avoid a NULL pointer deref when X509_get_pubkey() returns NULL. - wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

diff options

author	doug <doug@openbsd.org>	2015-03-15 22:52:17 +0000
committer	doug <doug@openbsd.org>	2015-03-15 22:52:17 +0000
commit	decd7047ef7ec22326fa6a959b7a9c3e318c47c9 (patch)
tree	ae73d6e5d5586636bcc1576476eeecab451752a0 /lib/libsqlite3/src/tclsqlite.c
parent	Prevent use after free. (diff)
download	wireguard-openbsd-decd7047ef7ec22326fa6a959b7a9c3e318c47c9.tar.xz wireguard-openbsd-decd7047ef7ec22326fa6a959b7a9c3e318c47c9.zip

Avoid a NULL pointer deref when X509_get_pubkey() returns NULL.

A NULL pointer could be dereferenced when X509_REQ_set_pubkey() calls X509_PUBKEY_set() with pktmp. OpenSSL says it's the fix for CVE-2015-0288, but there aren't any public details yet to confirm. Either way, we should fix this. Based on OpenSSL commit 28a00bcd8e318da18031b2ac8778c64147cd54f9 and BoringSSL commit 9d102ddbc0f6ed835ed12272a3d8a627d6a8e728. "looks sane" beck@ ok miod@, bcook@

Diffstat (limited to 'lib/libsqlite3/src/tclsqlite.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: