[openssl/openssl] b54846: Avoid NULL pointer dereference

Radek Krejčí noreply at github.com
Mon Jul 8 19:57:58 UTC 2024


  Branch: refs/heads/openssl-3.0
  Home:   https://github.com/openssl/openssl
  Commit: b548466d193c47102dec54a8ae6cfb06bb458059
      https://github.com/openssl/openssl/commit/b548466d193c47102dec54a8ae6cfb06bb458059
  Author: Radek Krejci <radek.krejci at oracle.com>
  Date:   2024-07-08 (Mon, 08 Jul 2024)

  Changed paths:
    M crypto/bio/bf_readbuff.c

  Log Message:
  -----------
  Avoid NULL pointer dereference

Function readbuffer_gets() misses some of the initial checks of its
arguments. Not checking them can lead to a later NULL pointer
dereferences.

The checks are now unified with the checks in readbuffer_read()
function.

CLA: trivial
Fixes #23915

Signed-off-by: Radek Krejci <radek.krejci at oracle.com>

Reviewed-by: Tom Cosgrove <tom.cosgrove at arm.com>
Reviewed-by: Paul Dale <ppzgs1 at gmail.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23918)

(cherry picked from commit c215d75f94fcaa598817e739221f33b71b53fb39)



To unsubscribe from these emails, change your notification settings at https://github.com/openssl/openssl/settings/notifications


More information about the openssl-commits mailing list