[openssl/openssl] 1ad7f4: Fix possible memleak in PKCS7_add0_attrib_signing_...

Bernd Edlinger noreply at github.com
Wed Nov 22 08:52:05 UTC 2023


  Branch: refs/heads/openssl-3.2
  Home:   https://github.com/openssl/openssl
  Commit: 1ad7f4bf979fcb5fb50013b0c9106e26c6ed2fac
      https://github.com/openssl/openssl/commit/1ad7f4bf979fcb5fb50013b0c9106e26c6ed2fac
  Author: Bernd Edlinger <bernd.edlinger at hotmail.de>
  Date:   2023-11-22 (Wed, 22 Nov 2023)

  Changed paths:
    M crypto/pkcs7/pk7_attr.c

  Log Message:
  -----------
  Fix possible memleak in PKCS7_add0_attrib_signing_time

When PKCS7_add_signed_attribute fails, the ASN1_TIME
object may be leaked when it was not passed in as
input parameter.

Reviewed-by: Neil Horman <nhorman at openssl.org>
Reviewed-by: Shane Lontis <shane.lontis at oracle.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
Reviewed-by: Richard Levitte <levitte at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/22772)

(cherry picked from commit 7d52539f00144cb410c4e9d8da0b9574c0badb19)




More information about the openssl-commits mailing list