]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b36dcc6) | patch
BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der()
authorWilliam Lallemand <wlallemand@haproxy.com>
Tue, 11 Aug 2020 09:18:46 +0000 (11:18 +0200)
committerWilliam Lallemand <wlallemand@haproxy.org>
Tue, 11 Aug 2020 09:18:46 +0000 (11:18 +0200)
commite3a5f84e53b407bf06e38922bc5f24379d759086
tree4c26d4609f0aaae86667d826c88929e5f0a35d07tree
parentb36dcc66ed8f698084e8c1f6eacbd7d36fde0f69commit | diff
BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der()

smp_fetch_ssl_x_chain_der() uses the SSL_get_peer_cert_chain() which
does not increment the refcount of the chain, so it should not be free'd.

The bug was introduced by a598b50 ("MINOR: ssl: add ssl_{c,s}_chain_der
fetch methods"). No backport needed.
src/ssl_sample.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git