diff options
| author | tb <> | 2021-09-08 14:33:02 +0000 |
|---|---|---|
| committer | tb <> | 2021-09-08 14:33:02 +0000 |
| commit | 34dad726781647a28729bb3e2fa6f77ca206abe8 (patch) | |
| tree | f88dffe43f68d172e6a78aaadce30d542ecdb977 /src | |
| parent | 7fd3c77e075b6a749f93465b01466ee17cf707a4 (diff) | |
| download | openbsd-34dad726781647a28729bb3e2fa6f77ca206abe8.tar.gz openbsd-34dad726781647a28729bb3e2fa6f77ca206abe8.tar.bz2 openbsd-34dad726781647a28729bb3e2fa6f77ca206abe8.zip | |
Fix leak in cms_RecipientInfo_kekri_decrypt()
Free ec->key before reassigning it.
From OpenSSL 1.1.1, 58e1e397
ok inoguchi
Diffstat (limited to 'src')
| -rw-r--r-- | src/lib/libcrypto/cms/cms_env.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/lib/libcrypto/cms/cms_env.c b/src/lib/libcrypto/cms/cms_env.c index 74d957eee0..a88ea63662 100644 --- a/src/lib/libcrypto/cms/cms_env.c +++ b/src/lib/libcrypto/cms/cms_env.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: cms_env.c,v 1.23 2019/10/04 18:03:56 tb Exp $ */ | 1 | /* $OpenBSD: cms_env.c,v 1.24 2021/09/08 14:33:02 tb Exp $ */ |
| 2 | /* | 2 | /* |
| 3 | * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | 3 | * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL |
| 4 | * project. | 4 | * project. |
| @@ -792,6 +792,7 @@ cms_RecipientInfo_kekri_decrypt(CMS_ContentInfo *cms, CMS_RecipientInfo *ri) | |||
| 792 | goto err; | 792 | goto err; |
| 793 | } | 793 | } |
| 794 | 794 | ||
| 795 | freezero(ec->key, ec->keylen); | ||
| 795 | ec->key = ukey; | 796 | ec->key = ukey; |
| 796 | ec->keylen = ukeylen; | 797 | ec->keylen = ukeylen; |
| 797 | 798 | ||