[SANTUARIO-496] DSA verification crashes OpenSSL on invalid combinations of key content - ASF JIRA

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: C++ 2.0.0, C++ 2.0.1
Fix Version/s: C++ 2.0.2
Component/s: C++
Labels:
None

Description

Particular KeyInfo combinations result in incomplete DSA key structures that OpenSSL can't handle without crashing.

Attachments

Activity

People

Assignee:

Scott Cantor

Reporter:

Scott Cantor

Votes:

0 Vote for this issue

Watchers:

0 Start watching this issue

Dates

Created:

11/Oct/18 13:22

Updated:

02/Nov/18 18:55

Resolved:

02/Nov/18 18:55