My Quivering Choad tells me that Bodo Moeller had this to say:
> On Thu, Jun 24, 1999 at 02:34:03PM +0100, Chad C. Mulligan wrote:
>
> > I've noticed that there is a memory leak in dsa_sign.c
> > The BN* kinv is not being freed before the function exits;
>
> Thanks for pointing this out. After verifying that fix I found
> another memory hole, and noticed that the openssl.c application did
> not really enable memory hole checks (CRYPTO_MEM_CHECK_ON should be
> ..._ENABLE) -- does anyone know what reason this could have?
Ooeerr. Where's the second hole you mention?
Chad
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
