Commit 10c3c1c1 authored by Rich Salz's avatar Rich Salz
Browse files

Zero-fill IV by default. 



Fixes uninitialized memory read reported by Nick Mathewson

Reviewed-by: default avatarTim Hudson <tjh@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/6603)
parent 358ffa05

crypto/pem/pem_lib.c

+1 −0
Original line number Diff line number Diff line
@@ -488,6 +488,7 @@ int PEM_get_EVP_CIPHER_INFO(char *header, EVP_CIPHER_INFO *cipher) 
    char *dekinfostart, c;



    cipher->cipher = NULL;

    memset(cipher->iv, 0, sizeof(cipher->iv));

    if ((header == NULL) || (*header == '\0') || (*header == '\n'))

        return 1;