GnuPG can't handle some V3 secret keys

Werner Koch wk at
Fri May 4 18:39:01 CEST 2001

On Fri, 4 May 2001, Florian Weimer wrote:

> The code in the g10 directory doesn't check the return value of
> mpi_read(), which is a null pointer if an error has occured.  In some
> situations, the null pointer dereferenced, resulting in a segmentation

I know about this but there is no need to be worried about it
because about all modern OSes will SEGV on a NULL pointer
dereference without a way to exploit it.  It would be worse in a
library, though.

Anyway, I have put a note in the TODO that this has to be fixed.

Thanks for reminding me of that.


Werner Koch        Omnis enim res, quae dando non deficit, dum habetur
g10 Code GmbH      et non datur, nondum habetur, quomodo habenda est.
Privacy Solutions                                        -- Augustinus

More information about the Gnupg-devel mailing list