]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0a6b53a) | patch
x509: fix mem leak on error path
authorNikola Pajkovsky <nikolap@openssl.org>
Mon, 22 Sep 2025 10:17:16 +0000 (12:17 +0200)
committerTomas Mraz <tomas@openssl.org>
Tue, 23 Sep 2025 14:43:06 +0000 (16:43 +0200)
commit8a4ef31f3ab9c8e512d29600ccc833cf03533b9e
tree8fc2fb2026bc07b1d1cd9beccc898249e29d6fd3tree
parent0a6b53ac87b54de2f467165c3d25e1af6400280acommit | diff
x509: fix mem leak on error path

The x509_store_add() creates X509_OBJECT wrapping either X509 or
X509_CRL. However, if you set the type to X509_LU_NONE before
X509_OBJECT_free then it skips the free on the wrapped type and just
calls OPENSSL_free on the object itself. Hence, leaking wrapped
object.

Signed-off-by: Nikola Pajkovsky <nikolap@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28631)
crypto/x509/x509_lu.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git