[openssl-dev] [openssl.org #4159] BUG ::: Null dereference in ssl3_free

Kurt Roeckx via RT rt at openssl.org
Sun Nov 29 13:28:34 UTC 2015

Previous message: [openssl-dev] [openssl.org #4159] BUG ::: Null dereference in ssl3_free
Next message: [openssl-dev] [openssl.org #4159] BUG ::: Null dereference in ssl3_free
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, Nov 29, 2015 at 11:09:34AM +0000, Srinivas Koripella via RT wrote:
> Description.
> 
> We are dereferencing s->s3 in ssl3_free without checking if s->s3 is null or not.

This has already been fixed in the current git versions.

I'm wondering why you see this, you should only get this in case
malloc() failed.

Kurt

Previous message: [openssl-dev] [openssl.org #4159] BUG ::: Null dereference in ssl3_free
Next message: [openssl-dev] [openssl.org #4159] BUG ::: Null dereference in ssl3_free
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the openssl-dev mailing list