Project

General

Profile

Actions

Bug #3000

closed

Open SSL Segfaults

Added by docwhat (Christian Höltje) over 14 years ago. Updated over 13 years ago.

Status:
Closed
Assignee:
-
ruby -v:
1.9.1-p376
[ruby-core:28907]

Description

=begin
According the OpenSSL docs, we need to set the store->ex_data.sk to NULL before doing a verify on an x509 store.

See the attached patch. It's a simple change and prevents segfaults or undefined behavior when using SSL. This is probably a security problem, but I don't know enough to figure out how to exploit it.

The patch applies to the latest 1.9.1 as well as the p243 it was written for.
=end


Files

openssl.patch (447 Bytes) openssl.patch One Line Patch docwhat (Christian Höltje), 03/24/2010 06:20 AM

Related issues 1 (0 open1 closed)

Related to Ruby master - Bug #3817: current ruby-openssl impl wrongly utilizes CRYPTO_EX_DATA in X509_STOREClosedActions
Actions

Also available in: Atom PDF

Like0
Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0