[openssl-commits] [openssl] OpenSSL_1_0_2-stable update

Richard Levitte levitte at openssl.org
Tue Jan 24 17:27:14 UTC 2017


The branch OpenSSL_1_0_2-stable has been updated
       via  8957adda165f77589090627d6563796331c0c94b (commit)
      from  cb00d4ff17eae9c4e489409f5d12bff76c110be1 (commit)


- Log -----------------------------------------------------------------
commit 8957adda165f77589090627d6563796331c0c94b
Author: Bernd Edlinger <bernd.edlinger at hotmail.de>
Date:   Thu Dec 22 13:51:27 2016 +0100

    Fix error handling in compute_key, BN_CTX_get can return NULL
    
    Reviewed-by: Rich Salz <rsalz at openssl.org>
    Reviewed-by: Richard Levitte <levitte at openssl.org>
    (Merged from https://github.com/openssl/openssl/pull/2132)
    (cherry picked from commit 7928ee4d685b727619555bc1ec0aee805f6fc8c4)

-----------------------------------------------------------------------

Summary of changes:
 crypto/dh/dh_key.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/crypto/dh/dh_key.c b/crypto/dh/dh_key.c
index 1d80fb2..387558f 100644
--- a/crypto/dh/dh_key.c
+++ b/crypto/dh/dh_key.c
@@ -223,6 +223,8 @@ static int compute_key(unsigned char *key, const BIGNUM *pub_key, DH *dh)
         goto err;
     BN_CTX_start(ctx);
     tmp = BN_CTX_get(ctx);
+    if (tmp == NULL)
+        goto err;
 
     if (dh->priv_key == NULL) {
         DHerr(DH_F_COMPUTE_KEY, DH_R_NO_PRIVATE_VALUE);


More information about the openssl-commits mailing list