[openssl-dev] [openssl.org #4100] Overlapping memcpy arguments in bn_add.c

Kurt Roeckx via RT rt at openssl.org
Fri Nov 20 21:38:18 UTC 2015

Previous message: [openssl-dev] We're working on license changes
Next message: [openssl-dev] [openssl.org #4149] [PATCH] ssl_set_pkey() unnecessarily updates certificates
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> 4/ in BN_usub, ap = a->d; and rp = r->d;
>   then the 2 pointers can be incremented, but an identical number of times
> 
> 5/ then memcpy is called with rp and ap that are still aliases, which is undefined behavior

The patch has been applied.


Kurt

Previous message: [openssl-dev] We're working on license changes
Next message: [openssl-dev] [openssl.org #4149] [PATCH] ssl_set_pkey() unnecessarily updates certificates
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the openssl-dev mailing list