I've tried to reproduce the issue but it doesn't fail for me. I"ve also looked at the code and it seems to now call OPENSSL_clear_free() which is actually CRYPTO_clear_free() and the first thing this function does is to check its first parameter is not NULL.
Considering all of the above, I'm going to mark this bug as Fix Released. ** Changed in: openssl (Ubuntu) Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssl in Ubuntu. https://bugs.launchpad.net/bugs/1551274 Title: creating SRP file crashes openssl Status in openssl package in Ubuntu: Fix Released Bug description: the following, with "test", "test" as passwords, make openssl crash: touch passwd.srpv ; openssl srp -srpvfile passwd.srpv -add user ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: openssl 1.0.2f-2ubuntu1 ProcVersionSignature: Ubuntu 4.4.0-4.19-generic 4.4.1 Uname: Linux 4.4.0-4-generic x86_64 ApportVersion: 2.20-0ubuntu3 Architecture: amd64 CurrentDesktop: GNOME Date: Mon Feb 29 16:15:20 2016 InstallationDate: Installed on 2015-12-02 (89 days ago) InstallationMedia: Ubuntu-GNOME 16.04 LTS "Xenial Xerus" - Alpha amd64 (20151027) SourcePackage: openssl UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1551274/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp