Skip to main content
Revision 3e5df378613b2bd70e2e2eee4bec7b5c88b298e6 authored by Emilia Kasper on 25 August 2014, 10:38:16 UTC, committed by Emilia Kasper on 27 August 2014, 17:50:36 UTC
Explicitly check for empty ASN.1 strings in d2i_ECPrivateKey
The old code implicitly relies on the ASN.1 code returning a \0-prefixed buffer
when the buffer length is 0. Change this to verify explicitly that the ASN.1 string
has positive length.

Reviewed-by: Dr Stephen Henson <steve@openssl.org>
(cherry picked from commit 82dc08de54ce443c2a9ac478faffe79e76157795)
1 parent 4e5f9f8
History
FileModeSize
OS2-EMX.cmd -rw-r--r--2.3 KB
backwardify.pl -rw-r--r--900 bytes
back to top