CVSROOT: /cvs Module name: src Changes by: js...@cvs.openbsd.org 2015/02/18 23:10:29
Modified files:
lib/libssl/src/crypto/bn: bn_rand.c
Log message:
If BN_rand() or BN_pseudo_rand() are called with a NULL rnd argument,
BN_bin2bn() will helpfully allocate a BN which is then leaked. Avoid this
by explicitly checking for NULL at the start of the bnrand() function.
Fixes Coverity ID 78831.
ok miod@
