Overview

File 0001-Fix-for-OpenSSL-CVE-2015-3194.patch of Package libressl.openSUSE_Leap_42.1_Update

From 70e905b0d750d02740f6bd15d1616a819a51af92 Mon Sep 17 00:00:00 2001
From: beck <>
Date: Thu, 3 Dec 2015 23:03:10 +0000
Subject: [PATCH] Fix for OpenSSL CVE-2015-3194 ok krw@

---
 src/lib/libssl/src/crypto/rsa/rsa_ameth.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/lib/libssl/src/crypto/rsa/rsa_ameth.c b/src/lib/libssl/src/crypto/rsa/rsa_ameth.c
index db4f623..ebf0b0f 100644
--- a/src/lib/libssl/src/crypto/rsa/rsa_ameth.c
+++ b/src/lib/libssl/src/crypto/rsa/rsa_ameth.c
@@ -298,7 +298,7 @@ rsa_pss_decode(const X509_ALGOR *alg, X509_ALGOR **pmaskHash)
 	if (pss->maskGenAlgorithm) {
 		ASN1_TYPE *param = pss->maskGenAlgorithm->parameter;
 		if (OBJ_obj2nid(pss->maskGenAlgorithm->algorithm) == NID_mgf1 &&
-		    param->type == V_ASN1_SEQUENCE) {
+		    param && param->type == V_ASN1_SEQUENCE) {
 			p = param->value.sequence->data;
 			plen = param->value.sequence->length;
 			*pmaskHash = d2i_X509_ALGOR(NULL, &p, plen);
-- 
2.4.3
openSUSE Build Service is sponsored by
Places