The branch openssl-3.0 has been updated via dd0c0eb7a54aed1d0b8b71ad22253558dc26d646 (commit) from ea4d670a094a2b5daa13ad13db247653a224a17d (commit)
- Log ----------------------------------------------------------------- commit dd0c0eb7a54aed1d0b8b71ad22253558dc26d646 Author: x2018 <xkernel.w...@foxmail.com> Date: Tue Nov 23 21:33:17 2021 +0800 check the return value of OPENSSL_strdup(CRYPTO_strdup) to prevent potential memory access error Reviewed-by: Tomas Mraz <to...@openssl.org> Reviewed-by: Paul Dale <pa...@openssl.org> (Merged from https://github.com/openssl/openssl/pull/17113) (cherry picked from commit b9648f31a4917b8594caebda3e6d8d313514fe24) ----------------------------------------------------------------------- Summary of changes: apps/lib/app_rand.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/apps/lib/app_rand.c b/apps/lib/app_rand.c index e38d3a72fc..08550d7bfc 100644 --- a/apps/lib/app_rand.c +++ b/apps/lib/app_rand.c @@ -110,6 +110,8 @@ int opt_rand(int opt) case OPT_R_WRITERAND: OPENSSL_free(save_rand_file); save_rand_file = OPENSSL_strdup(opt_arg()); + if (save_rand_file == NULL) + return 0; break; } return 1;