[openssl-dev] [openssl.org #4386] [PATCH] Add sanity checks for BN_new() in OpenSSL-1.0.2g
Bill Parker via RT
rt at openssl.org
Mon Mar 7 17:55:23 UTC 2016
Hello All,
In reviewing code in directory 'engines/ccgost', file 'gost2001.c',
there are two calls to BN_new() which are not checked for a return
value of NULL, indicating failure.
The patch file below should address/correct this issue:
--- gost2001.c.orig 2016-03-06 11:32:49.676178425 -0800
+++ gost2001.c 2016-03-06 11:38:04.604204158 -0800
@@ -434,6 +434,10 @@
int gost2001_keygen(EC_KEY *ec)
{
BIGNUM *order = BN_new(), *d = BN_new();
+ if (!order || !d) {
+ GOSTerr(GOST_F_GOST2001_KEYGEN, ERR_R_MALLOC_FAILURE);
+ return 0;
+ }
const EC_GROUP *group = EC_KEY_get0_group(ec);
if(!group || !EC_GROUP_get_order(group, order, NULL)) {
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4386
Please log in as guest with password guest if prompted
-------------- next part --------------
A non-text attachment was scrubbed...
Name: gost2001.c.patch
Type: application/octet-stream
Size: 426 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20160307/b51cc0b0/attachment.obj>
More information about the openssl-dev
mailing list