x509: Fix leak if a CRL contains multiple authorityKeyIdentifiers

author Tobias Brunner <tobias@strongswan.org>

Wed, 21 Feb 2018 10:13:42 +0000 (11:13 +0100)

committer Tobias Brunner <tobias@strongswan.org>

Wed, 21 Feb 2018 10:13:42 +0000 (11:13 +0100)
author Tobias Brunner <tobias@strongswan.org>
Wed, 21 Feb 2018 10:13:42 +0000 (11:13 +0100)
committer Tobias Brunner <tobias@strongswan.org>
Wed, 21 Feb 2018 10:13:42 +0000 (11:13 +0100)
diff --git a/src/libstrongswan/plugins/x509/x509_crl.c b/src/libstrongswan/plugins/x509/x509_crl.c

index 699ac5a392a813faccf82c85c3393e0b990a38ce..5c5010b976a73395ea1ea533a23717136d05f59c 100644 (file)
--- a/src/libstrongswan/plugins/x509/x509_crl.c
+++ b/src/libstrongswan/plugins/x509/x509_crl.c
@@ -302,6 +302,7 @@ static bool parse(private_x509_crl_t *this)
                                                 }
                                                 break;
                                         case OID_AUTHORITY_KEY_ID:
+                                               chunk_free(&this->authKeyIdentifier);
                                                 this->authKeyIdentifier =
                                                         x509_parse_authorityKeyIdentifier(
                                                                         object, level, &this->authKeySerialNumber);
author	Tobias Brunner <tobias@strongswan.org>
	Wed, 21 Feb 2018 10:13:42 +0000 (11:13 +0100)
committer	Tobias Brunner <tobias@strongswan.org>
	Wed, 21 Feb 2018 10:13:42 +0000 (11:13 +0100)