[openssl-dev] [openssl.org #3776] Memory corruption in X509_VERIFY_PARAM_new

Wed, 01 Apr 2015 02:05:21 -0700 

Hi,

Bug report for OpenSSL 1.0.2a. Possible memory corruption.

In x509_vpm.c at function X509_VERIFY_PARAM_new:
paramid = OPENSSL_malloc(sizeof(X509_VERIFY_PARAM));
must be replaced:
paramid = OPENSSL_malloc(sizeof(X509_VERIFY_PARAM_ID));

Best regards,
Egor

_______________________________________________
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Reply via email to