Fix memory leak on invalid CertificateRequest. (6afef8b1) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Commit 6afef8b1 authored Mar 14, 2016 by

David Benjamin Committed by Dr. Stephen Henson Apr 07, 2016

Fix memory leak on invalid CertificateRequest.



Free up parsed X509_NAME structure if the CertificateRequest message
contains excess data.

The security impact is considered insignificant. This is a client side
only leak and a large number of connections to malicious servers would
be needed to have a significant impact.

This was found by libFuzzer.

Reviewed-by: Emilia Käsper <emilia@openssl.org>
Reviewed-by: Stephen Henson <steve@openssl.org>

parent d1094383

Hide whitespace changes

Inline Side-by-side

Please register or to comment