]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 72062fc) | patch
Add NULL checks where ContentInfo data can be NULL
authorMatt Caswell <matt@openssl.org>
Fri, 19 Jan 2024 11:28:58 +0000 (11:28 +0000)
committerMatt Caswell <matt@openssl.org>
Thu, 25 Jan 2024 15:27:43 +0000 (15:27 +0000)
commit041962b429ebe748c8b6b7922980dfb6decfef26
tree30c597b862fd146ff3859d1d7a28a4b6138ddcc3tree | snapshot
parent72062fca2870af4ef789cd5fc3442b3569f52c9bcommit | diff
Add NULL checks where ContentInfo data can be NULL

PKCS12 structures contain PKCS7 ContentInfo fields. These fields are
optional and can be NULL even if the "type" is a valid value. OpenSSL
was not properly accounting for this and a NULL dereference can occur
causing a crash.

CVE-2024-0727

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23361)
crypto/pkcs12/p12_add.c diff | blob | blame | history
crypto/pkcs12/p12_mutl.c diff | blob | blame | history
crypto/pkcs12/p12_npas.c diff | blob | blame | history
crypto/pkcs7/pk7_mime.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git