[SANTUARIO-496] DSA verification crashes OpenSSL on invalid combinations of key content - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: C++ 2.0.0, C++ 2.0.1
Fix Version/s: C++ 2.0.2
Component/s: C++
Labels:
None

Description

Particular KeyInfo combinations result in incomplete DSA key structures that OpenSSL can't handle without crashing.

Attachments

Activity

People

Assignee:: Scott Cantor

Reporter:: Scott Cantor

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 11/Oct/18 13:22

Updated:: 02/Nov/18 18:55

Resolved:: 02/Nov/18 18:55