mbedtls icon indicating copy to clipboard operation
mbedtls copied to clipboard

Published 20 hours ago verified publisher icon Mbed-TLS

ssl_tls: avoid the appearance of a potential NULL dereferencing

Open leorosen opened this issue 2 years ago • 0 comments

Looking at the bigger picture it is clear that if ssl->session is NULL, there will be a failure much earlier, and that is well protected from, however, the practice of dereferencing a pointer which has not been verified in prior for validity goes against secure coding practices.

Description

See #6183

Status

READY

Requires Backporting

NO

Migrations

NO

leorosen avatar Aug 09 '22 00:08 leorosen