Check public key is not NULL.

CVE-2015-0288 PR#3708 (Imported from upstream's 28a00bcd8e318da18031b2ac8778c64147cd54f9.) Change-Id: I6d60691da4c6860f87c753c065e93e9d0704aba9 Reviewed-on: https://boringssl-review.googlesource.com/3750 Reviewed-by: Adam Langley <agl@google.com>
2015-03-03 10:31:43 -08:00 · 2015-03-03 10:31:43 -08:00 · 9d102ddbc0
commit 9d102ddbc0
parent e023ad2d83
1 changed files with 2 additions and 0 deletions
--- a/crypto/x509/x509_req.c
+++ b/crypto/x509/x509_req.c
@ -92,6 +92,8 @@ X509_REQ *X509_to_X509_REQ(X509 *x, EVP_PKEY *pkey, const EVP_MD *md)
 		goto err;

 	pktmp = X509_get_pubkey(x);
+	if (pktmp == NULL)
+		goto err;
 	i=X509_REQ_set_pubkey(ret,pktmp);
 	EVP_PKEY_free(pktmp);
 	if (!i) goto err;