[openssl/openssl] ea5ef3: Fix a possible NULL pointer dereference in create_...
Tomas Mraz
noreply at reply.github.openssl.org
Thu Apr 21 06:34:47 UTC 2022
Branch: refs/heads/openssl-3.0
Home: https://github.openssl.org/openssl/openssl
Commit: ea5ef33be1bd4fbd89143932a4d12a72003913a5
https://github.openssl.org/openssl/openssl/commit/ea5ef33be1bd4fbd89143932a4d12a72003913a5
Author: Zhou Qingyang <zhou1615 at umn.edu>
Date: 2022-04-21 (Thu, 21 Apr 2022)
Changed paths:
M apps/ts.c
Log Message:
-----------
Fix a possible NULL pointer dereference in create_cert_store()
In create_cert_store(), X509_STORE_new() is called and there is a
dereference of it in following function X509_STORE_add_lookup()
without check, which could lead to NULL pointer dereference.
Fix this by adding a NULL check of X509_STORE_new()
Reviewed-by: Shane Lontis <shane.lontis at oracle.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/18057)
(cherry picked from commit 3f075967f664aac12951a1d7aa3124d9235cd299)
More information about the openssl-commits
mailing list