[Bug 1626773] [NEW] CVE-2016-2182.patch has broken BN_bn2dec broken in 1.0.1
OpenCPU
1626773 at bugs.launchpad.net
Thu Sep 22 22:59:36 UTC 2016
Public bug reported:
My software which links to libcrypto stopped working on both Ubuntu
12.04 / 14.04 / 16.04 last week.
The problem is that BN_bn2dec returns NULL all the time (without setting
an error message) even for valid input values. I think is a bug in
CVE-2016-2182.patch.
** Affects: openssl (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1626773
Title:
CVE-2016-2182.patch has broken BN_bn2dec broken in 1.0.1
Status in openssl package in Ubuntu:
New
Bug description:
My software which links to libcrypto stopped working on both Ubuntu
12.04 / 14.04 / 16.04 last week.
The problem is that BN_bn2dec returns NULL all the time (without
setting an error message) even for valid input values. I think is a
bug in CVE-2016-2182.patch.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1626773/+subscriptions
More information about the foundations-bugs
mailing list