[openssl-dev] [openssl.org #4296] Fix possible crash in BIO_parse_hostserv()

J Mohan Rao Arisankala via RT rt at openssl.org
Mon Feb 8 10:10:48 UTC 2016


Hi,

If BIO_parse_hostserv() is invoked with only <host> (no port), it was
running into crash when trying to check for any further colons existed in
the parsed <port>, as pointer to <port> is NULL in this case.

To reproduce the issue:

    $ openssl s_client -connect  <IP>
    seg faults

I have created a pull request with the required check, please check.

https://github.com/openssl/openssl/pull/639


Thanks,
Mohan

-- 
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4296
Please log in as guest with password guest if prompted



More information about the openssl-dev mailing list