null pointer dereference in krl.c?
djm at mindrot.org
Sun Jan 27 21:18:15 EST 2013
On Sun, 27 Jan 2013, Damien Miller wrote:
> > The result of `xrealloc' is never assigned to `ca_used', which remains
> > a null pointer. Will ca_used[...] crash?. Did I miss anything?
> Yes, I'll commit a fix.
BTW this bug was in the KRL signature code that isn't really used yet,
since ssh-keygen currently lacks the ability to sign KRLs. I hope to
add this shortly.
More information about the openssh-unix-dev