[openssl-commits] [openssl] OpenSSL_1_0_0-stable update

Rich Salz rsalz at openssl.org
Thu Jul 30 01:22:03 UTC 2015


The branch OpenSSL_1_0_0-stable has been updated
       via  86fecb23df64a87dc9833f8d88f7c3f9c704f6b9 (commit)
      from  9e2b04b677243b49d53cb008b0011f92bdd8d665 (commit)


- Log -----------------------------------------------------------------
commit 86fecb23df64a87dc9833f8d88f7c3f9c704f6b9
Author: Martin Vejnar <Martin.Vejnar at avg.com>
Date:   Wed Jul 29 17:28:19 2015 -0400

    RT3774: double-free in DSA
    
    Reviewed-by: Matt Caswell <matt at openssl.org>
    (cherry picked from commit fa4629b6a2518d202fd051f228c3d8770682b3be)

-----------------------------------------------------------------------

Summary of changes:
 crypto/dsa/dsa_ameth.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/crypto/dsa/dsa_ameth.c b/crypto/dsa/dsa_ameth.c
index 9fdce81..1dd373d 100644
--- a/crypto/dsa/dsa_ameth.c
+++ b/crypto/dsa/dsa_ameth.c
@@ -316,6 +316,7 @@ static int dsa_priv_encode(PKCS8_PRIV_KEY_INFO *p8, const EVP_PKEY *pkey)
     dplen = i2d_ASN1_INTEGER(prkey, &dp);
 
     ASN1_STRING_clear_free(prkey);
+    prkey = NULL;
 
     if (!PKCS8_pkey_set0(p8, OBJ_nid2obj(NID_dsa), 0,
                          V_ASN1_SEQUENCE, params, dp, dplen))


More information about the openssl-commits mailing list