null pointer dereference in krl.c?

Damien Miller djm at
Sun Jan 27 21:18:15 EST 2013

On Sun, 27 Jan 2013, Damien Miller wrote:

> > The result of `xrealloc' is never assigned to `ca_used', which remains
> > a null pointer.  Will ca_used[...] crash?.  Did I miss anything?
> Yes, I'll commit a fix.

BTW this bug was in the KRL signature code that isn't really used yet,
since ssh-keygen currently lacks the ability to sign KRLs. I hope to
add this shortly.


More information about the openssh-unix-dev mailing list