Description: fix denial of service and possible code execution via
 crafted private key with an invalid prime.
Origin: other, http://www.mail-archive.com/openssl-dev@openssl.org/msg28049.html
Bug-Debian: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=594415

Index: openssl-0.9.8o/ssl/s3_clnt.c
===================================================================
--- openssl-0.9.8o.orig/ssl/s3_clnt.c	2010-10-06 16:42:53.000000000 -0400
+++ openssl-0.9.8o/ssl/s3_clnt.c	2010-10-06 16:43:22.000000000 -0400
@@ -1377,6 +1377,7 @@
 		s->session->sess_cert->peer_ecdh_tmp=ecdh;
 		ecdh=NULL;
 		BN_CTX_free(bn_ctx);
+		bn_ctx = NULL;
 		EC_POINT_free(srvr_ecpoint);
 		srvr_ecpoint = NULL;
 		}