]> git.ipfire.org Git - thirdparty/openssl.git/commitdiff
projects / thirdparty / openssl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 83b62d4)
Fix memory leak on failure in copy_issuer()
authorNiels Dossche <niels.dossche@ugent.be>
Tue, 5 Nov 2024 15:11:56 +0000 (16:11 +0100)
committerTomas Mraz <tomas@openssl.org>
Thu, 7 Nov 2024 09:19:56 +0000 (10:19 +0100)
When sk_GENERAL_NAME_reserve() fails, ialt is not freed.
Add the freeing operation in the common error path.

Reviewed-by: Tom Cosgrove <tom.cosgrove@arm.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25876)

crypto/x509/v3_san.c patch | blob | blame | history

diff --git a/crypto/x509/v3_san.c b/crypto/x509/v3_san.c
index dfcebc0a3548742d2c38fb1fad45c42239c2f690..bc13c088d549b822a221357679373e8df40f7246 100644 (file)
--- a/crypto/x509/v3_san.c
+++ b/crypto/x509/v3_san.c
@@ -335,7 +335,7 @@ static GENERAL_NAMES *v2i_issuer_alt(X509V3_EXT_METHOD *method,
 
 static int copy_issuer(X509V3_CTX *ctx, GENERAL_NAMES *gens)
 {
-    GENERAL_NAMES *ialt;
+    GENERAL_NAMES *ialt = NULL;
     GENERAL_NAME *gen;
     X509_EXTENSION *ext;
     int i, num;
@@ -370,6 +370,7 @@ static int copy_issuer(X509V3_CTX *ctx, GENERAL_NAMES *gens)
     return 1;
 
  err:
+    sk_GENERAL_NAME_free(ialt);
     return 0;
 
 }
Mirror of https://github.com/openssl/openssl.git