Lutz Jaenicke via RT wrote:
> Andrew Lamoureux via RT wrote:
>> Hi, I'd like to report a bug in openssl-0.9.8g compiled with
>> Visual Studio. OS is Windows XP.
>>
>> Access violation occurs when BN_rshift() is used on a BIGNUM whose
>> bit length is less (amount required varies) than the number of
>> bits requesting to be shifted.
>>
>> Here is very simple code that reliably reproduces the problem:
>>
>> BIGNUM * bnp = BN_new();
>> BN_rand(bnp, 64, 0, 0);
>> BN_rshift(bnp, bnp, 67);
>>
>>

> It does crash in BN_rshift() with a segmentation violation on Linux as well.


fixed in http://cvs.openssl.org/chngview?cn=17564. a.


__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majordomo@openssl.org