artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6471f2a) | patch
Plug a long standing leak in libtls CRL handling
authortb <tb@openbsd.org>
Tue, 8 Feb 2022 19:13:50 +0000 (19:13 +0000)
committertb <tb@openbsd.org>
Tue, 8 Feb 2022 19:13:50 +0000 (19:13 +0000)
commit56f8640c2d889852a8bfd6707e723d2c38cdd850
tree8b4c95a8780e5e4c9c71ec0e212337d5ca5c04bbtree | snapshot
parent6471f2aa41ca0006b62bd111d34fedc691485e34commit | diff
Plug a long standing leak in libtls CRL handling

X509_STORE_add_crl() does not take ownership of the CRL, it bumps its
refcount. So nulling out the CRL from the stack will leak it.

Issue reported by KS Sreeram, thanks!

ok jsing
lib/libtls/tls.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim