Hi,
In file mkcert.c under demos/x509, we have failed to assert variables "pkeyp" and "x509p". Due to which if any these variables is NULL (i.e.if pkeyp==NULL or x509p==NULL), the function will crash at the end. I've found the problem in OpenSSL 0.9.8.e and it exists in its previous versions as well. One possible solution of this problem is to insert a check for these variables not being NULL at the beginning of the function. Please find an attached copy of patch in the attachments. Regards Sandeep Ghotra
Hi,
In file mkcert.c under demos/x509,
we have failed to assert variables "pkeyp" and "x509p".
Due to which if any these
variables is NULL (i.e.if pkeyp==NULL or x509p==NULL), the function will
crash at the end.
I've found the problem in OpenSSL 0.9.8.e and it exists
in its previous versions as well.
One possible solution of this
problem is to insert a check for these variables not being
NULL
at the beginning of the function.
Please find
an attached copy of patch in the attachments.
Regards
Sandeep
Ghotra
mkcert_patch_tbd
Description: Binary data
