You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The result from signature file BIO creation is not check which means that NULL is passed to PEM_read_bio_CMS, d2i_CMS_bio or SMIME_read_CMS. Even though those function handle NULL deeper in the stack, it is not something that should be done. It also adds error put on OpenSSL error stack which should not happen for error like this.
The example code that triggers this is following (key, cert and infile are like the ones in openssl ext test dir):
Description
The result from signature file BIO creation is not check which means that NULL is passed to
PEM_read_bio_CMS
,d2i_CMS_bio
orSMIME_read_CMS
. Even though those function handle NULL deeper in the stack, it is not something that should be done. It also adds error put on OpenSSL error stack which should not happen for error like this.The example code that triggers this is following (key, cert and infile are like the ones in openssl ext test dir):
PHP Version
PHP 8.x
Operating System
No response
The text was updated successfully, but these errors were encountered: