librabbitmq calls CONF_modules_load_file() explicitly (OpenSSL 1.1.1 porting)

Bug #1951102 reported by Julian Andres Klode
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
librabbitmq (Ubuntu)
New
Undecided
Unassigned
Focal
New
Undecided
Unassigned

Bug Description

This package is calling CONF_modules_load_file() explicitly with NULL filename. This might lead to configuration files being loaded twice in OpenSSL 1.1.1, which causes engines to be loaded multiple times, causing engines specified therein to be loaded and unloaded twice; which engines do not support (LP: #1921518)

Further analysis is needed if this package actually loads config files twice, this is just a preliminary report based on grepping the archive.

tags: added: server-todo
Changed in librabbitmq (Ubuntu):
assignee: nobody → Miriam España Acebal (mirespace)
Revision history for this message
Miriam España Acebal (mirespace) wrote :

This issue will be fixed in openssl via bug 1951943
Closing this one as a dup.

Changed in librabbitmq (Ubuntu):
assignee: Miriam España Acebal (mirespace) → nobody
tags: removed: server-todo
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.