Hi all,
Hi Satoshi,
I've been looking into the recent (well, what's recent you might say but never mind ;) changes made in CVS repository, and found this:
- http://cvs.openssl.org/chngview?cn=9280
What will be an impact of not applying this fix (other than uninitialized memory read, of course :) ?
The only reason for this patch is (as far as I remember) to avoid annoying Purify warnings (btw: this part could be included in '#ifdef PURIFY' statement).
Is there any possibility of this to actually happen
It can happen, but it doesn't really matter (because the uninitialized memory will be overwritten immediately after that anyway (but Purify is not clever enough to see that)).
Regards, Nils
______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
