Build Update for openssl/openssl ------------------------------------- Build: #8551 Status: Errored
Duration: 1 hour, 56 minutes, and 14 seconds Commit: be31d57 (OpenSSL_1_1_0-stable) Author: Guido Vranken Message: Prevent allocations of size 0 in sh_init. which are not possible with the default OPENSSL_zalloc, but are possible if the user has installed their own allocator using CRYPTO_set_mem_functions. If the 0-allocations succeeds, the secure heap code will later access (at least) the first byte of that space, which is technically an OOB access. This could lead to problems with some custom allocators that only return a valid pointer for subsequent free()-ing, and do not expect that the pointer is actually dereferenced. Reviewed-by: Richard Levitte <levi...@openssl.org> Reviewed-by: Rich Salz <rs...@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2605) (cherry picked from commit 7f07149d25f8d7e00e9350ff2f064a4d25c1a13d) View the changeset: https://github.com/openssl/openssl/compare/dff827da7515...be31d57686a5 View the full build log and details: https://travis-ci.org/openssl/openssl/builds/201630544 -- You can configure recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications
_____ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
