Fix undefined behaviour in the event of a zero length session id - openssl

diff options

author	Matt Caswell <matt@openssl.org>	2024-05-01 12:23:57 +0200
committer	Tomas Mraz <tomas@openssl.org>	2024-05-06 10:44:22 +0200
commit	97c6489b39c966c6e5169b9b92ec5fa9a35c7ba3 (patch)
tree	662c859709807b6c3db71dff949eb468e56e9a6e /Configure
parent	Document the SSL_set_session_secret_cb() function (diff)
download	openssl-97c6489b39c966c6e5169b9b92ec5fa9a35c7ba3.tar.xz openssl-97c6489b39c966c6e5169b9b92ec5fa9a35c7ba3.zip

Fix undefined behaviour in the event of a zero length session id

Don't attempt to memcpy a NULL pointer if the length is 0. Reviewed-by: Neil Horman <nhorman@openssl.org> Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/24309)

Diffstat (limited to 'Configure')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: