[openssl-dev] [openssl.org #4159] BUG ::: Null dereference in ssl3_free
Kurt Roeckx via RT
rt at openssl.org
Sun Nov 29 13:28:34 UTC 2015
On Sun, Nov 29, 2015 at 11:09:34AM +0000, Srinivas Koripella via RT wrote:
> Description.
>
> We are dereferencing s->s3 in ssl3_free without checking if s->s3 is null or not.
This has already been fixed in the current git versions.
I'm wondering why you see this, you should only get this in case
malloc() failed.
Kurt
More information about the openssl-dev
mailing list