[[EMAIL PROTECTED] - Tue Dec 3 13:56:10 2002]: > Hello, > my colleague Jan Hofmann experimented with new ASN.1 code from > openssl-0.9.7-beta4. He achieved buggy behavior when parsing > incomplete (truncated) DER data under specific conditions. > Openssl does'not detect any error while parsing truncated DER data. > He asked on openssl-users mailling list without response. > I tried to debug his code down into libcrypto and localized bug > in function asn1_d2i_read_bio(). > I found this problem in RT/openssl.org since May 2002 (Id #20). >
I've checked in a fix. Steve. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
