`openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference

Published: Mar 24, 2023
Updated: Apr 14, 2023
GHSA: <a href="https://github.com/advisories/GHSA-6hcf-g6gr-hhcr" target="_blank" rel="noopener"> GHSA-6hcf-g6gr-hhcr
Severity: High
Exploit:

These functions would crash when the context argument was None with certain extension types.

Thanks to David Benjamin (Google) for reporting this issue.