This patch adds a check for null originatorInfo to these two functions: 1. cms_get0_certificate_choices() 2. cms_get0_revocation_choices()
Interestingly, the first one wasn't causing a problem, but only because luckily "certificates" comes first in the structure, so it ends up returning NULL + 0, and the calling function checks for NULL so it handles it. The second one however causes a seg fault because it returns NULL+4, so then it crashes on the dereference in the calling function (CMS_get1_crls). Thanks, Phillip Hellewell
check_cms_originatorinfo_null.patch
Description: Binary data
