-
-
Notifications
You must be signed in to change notification settings - Fork 9.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix null pointer dereference when memory allocation fails #21606
Fix null pointer dereference when memory allocation fails #21606
Conversation
18425f5
to
7838cb5
Compare
7838cb5
to
d1657ce
Compare
d1657ce
to
75fb985
Compare
Side note: looking at the source code for 3.0 Lines 820 to 826 in bbc1aa9
and 3.1, Lines 822 to 828 in 162b5a3
it seems like the fix needs to be applied to the 3.0 and 3.1 branches as well (and it cherry-picks cleanly). However, looking at @paulidale's commit 99fd5b2 it turns out not to be an issue because the lock parameter is ignored in |
yes,I only encountered this issue with GCC 4.1.1 and openssl-1.1.1. |
This pull request is ready to merge |
Merged to 1.1.1, 3.1 and 3.0. Does not appear to be applicable to master. |
Fixes openssl#21605 Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from openssl#21606) (cherry picked from commit a8da305)
A null pointer dereference occurs when memory allocation fails
Fixes #21605