Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP1:GA
compat-openssl098.3237
openssl-CVE-2015-1792.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File openssl-CVE-2015-1792.patch of Package compat-openssl098.3237
commit 92f9a8bf3844359bb50d86dab92bc24b074d350d Author: Dr. Stephen Henson <steve@openssl.org> Date: Fri Jun 5 12:11:25 2015 +0100 Fix infinite loop in CMS Fix loop in do_free_upto if cmsbio is NULL: this will happen when attempting to verify and a digest is not recognised. Reported by Johannes Bauer. CVE-2015-1792 Reviewed-by: Matt Caswell <matt@openssl.org> Index: openssl-0.9.8j/crypto/cms/cms_smime.c =================================================================== --- openssl-0.9.8j.orig/crypto/cms/cms_smime.c 2015-06-12 17:12:06.305161154 +0200 +++ openssl-0.9.8j/crypto/cms/cms_smime.c 2015-06-12 17:12:30.846478535 +0200 @@ -141,7 +141,7 @@ static void do_free_upto(BIO *f, BIO *up BIO_free(f); f = tbio; } - while (f != upto); + while (f && f != upto); } else BIO_free_all(f);
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor