]> git.ipfire.org Git - thirdparty/postgresql.git/commit
Fix memory leak in libpq when using sslmode=verify-full
authorMichael Paquier <michael@paquier.xyz>
Tue, 21 Apr 2020 22:27:03 +0000 (07:27 +0900)
committerMichael Paquier <michael@paquier.xyz>
Tue, 21 Apr 2020 22:27:03 +0000 (07:27 +0900)
commit27dbe1a18423f2f80c10d191844a0ba4dea650ff
tree13013e217b552ae34cbbb555df72960083f75e41
parent8803506c411e457adc2531c6ecb69e002e8a83c6
Fix memory leak in libpq when using sslmode=verify-full

Checking if Subject Alternative Names (SANs) from a certificate match
with the hostname connected to leaked memory after each lookup done.

This is broken since acd08d7 that added support for SANs in SSL
certificates, so backpatch down to 9.5.

Author: Roman Peshkurov
Reviewed-by: Hamid Akhtar, Michael Paquier, David Steele
Discussion: https://postgr.es/m/CALLDf-pZ-E3mjxd5=bnHsDu9zHEOnpgPgdnO84E2RuwMCjjyPw@mail.gmail.com
Backpatch-through: 9.5
src/interfaces/libpq/fe-secure-openssl.c