[openssl-commits] [openssl] OpenSSL_1_0_2-stable update
Rich Salz
rsalz at openssl.org
Tue Jun 23 12:15:21 UTC 2015
The branch OpenSSL_1_0_2-stable has been updated
via 4ce5ed5f3970a1973c4cba41901294632a3c617d (commit)
from 295c629ab1676647c53166db96657e1fccad1508 (commit)
- Log -----------------------------------------------------------------
commit 4ce5ed5f3970a1973c4cba41901294632a3c617d
Author: Rich Salz <rsalz at openssl.org>
Date: Tue Jun 23 08:14:24 2015 -0400
RT3682: Avoid double-free on OCSP parse error
Found by Kurt Cancemi
(Manual cherry-pick of f8e427154bbc0c33f29fa7aad001b1b655e5995b)
Reviewed-by: Matt Caswell <matt at openssl.org>
-----------------------------------------------------------------------
Summary of changes:
apps/ocsp.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/apps/ocsp.c b/apps/ocsp.c
index b858b8d..926083d 100644
--- a/apps/ocsp.c
+++ b/apps/ocsp.c
@@ -209,6 +209,7 @@ int MAIN(int argc, char **argv)
OPENSSL_free(tport);
if (tpath)
OPENSSL_free(tpath);
+ thost = tport = tpath = NULL;
if (args[1]) {
args++;
if (!OCSP_parse_url(*args, &host, &port, &path, &use_ssl)) {
More information about the openssl-commits
mailing list