Skip to main content

NULL Pointer Dereference


Severity High
Score 7.5/10


An invalid pointer dereference on read can be triggered when an application tries to load malformed PKCS7 data with the "d2i_PKCS7()", "d2i_PKCS7_bio()", or "d2i_PKCS7_fp()" functions. The result of the dereference is an application crash which could lead to a denial of service attack. The TLS implementation in OpenSSL versions 3.0.0-alpha7 through 3.0.7 does not call this function however third-party applications might call these functions on untrusted data.

  • LOW
  • NONE
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-476 - NULL Pointer Dereference

A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

Advisory Timeline

  • Published