[openssl.org #3214] commit 20b82b514d81a64f5b240788e5051167456af379 opens possible segfault

Anthony Minessale via RT Mon, 06 Jan 2014 01:29:52 -0800

commit 20b82b514d81a64f5b240788e5051167456af379 on dec 20th creates an
issue where NULL can be passed to EVP_MD_CTX_destroy


Specifically d1_both.c:221

EVP_MD_CTX_destroy(frag->msg_header.saved_retransmit_state.write_hash);

Doing a DTLS negotiation between FreeSWITCH and Google Chrome using WebRTC
a segfault results every time.

adding a NULL check such as this resolves the issue but may not be the
correct solution.

if (frag->msg_header.saved_retransmit_state.write_hash)
    EVP_MD_CTX_destroy(frag->msg_header.saved_retransmit_state.write_hash);


This change has just gone into Debian Wheezy and is starting to affect
anyone using FreeSWITCH with Chrome WebRTC.



-- 
Anthony Minessale II       ♬ @anthmfs  ♬ @FreeSWITCH  ♬

☞ http://freeswitch.org/  ☞ http://cluecon.com/  ☞
http://twitter.com/FreeSWITCH
☞ irc.freenode.net #freeswitch ☞ *http://freeswitch.org/g+
<http://freeswitch.org/g+>*

ClueCon Weekly Development Call
☎ sip:8...@conference.freeswitch.org  ☎ +19193869900

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       openssl-dev@openssl.org
Automated List Manager                           majord...@openssl.org

[openssl.org #3214] commit 20b82b514d81a64f5b240788e5051167456af379 opens possible segfault

Reply via email to