[openssl-dev] [openssl.org #4407] avoid double-free in callers to OCSP_parse_url
Basney, Jim via RT
rt at openssl.org
Thu Mar 10 01:02:32 UTC 2016
https://github.com/openssl/openssl/pull/837
This patch sets the path, port, and host parameters to NULL after they are
freed in OCSP_parse_url, before they are returned to the caller, so the
caller won't try to free them again.
Thanks,
Jim
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4407
Please log in as guest with password guest if prompted
More information about the openssl-dev
mailing list