[openssl/openssl] 1e86ae: fix missing null check in kdf_test_ctrl
Neil Horman
noreply at github.com
Tue Jan 30 16:04:09 UTC 2024
Branch: refs/heads/openssl-3.2
Home: https://github.com/openssl/openssl
Commit: 1e86ae513dd42b53d29d8e56ef3ecdf130bac4a9
https://github.com/openssl/openssl/commit/1e86ae513dd42b53d29d8e56ef3ecdf130bac4a9
Author: Neil Horman <nhorman at openssl.org>
Date: 2024-01-30 (Tue, 30 Jan 2024)
Changed paths:
M test/evp_test.c
Log Message:
-----------
fix missing null check in kdf_test_ctrl
Coverity issue 1453632 noted a missing null check in kdf_test_ctrl
recently. If a malformed value is passed in from the test file that
does not contain a ':' character, the p variable will be NULL, leading
to a NULL derefence prepare_from_text
Reviewed-by: Tomas Mraz <tomas at openssl.org>
Reviewed-by: Tom Cosgrove <tom.cosgrove at arm.com>
(Merged from https://github.com/openssl/openssl/pull/23398)
(cherry picked from commit 6ca1d3ee81b61bc973e4e1079ec68ac73331c159)
More information about the openssl-commits
mailing list