mirror of
https://github.com/openssl/openssl.git
synced 2024-12-15 06:01:37 +08:00
ee6243f394
In the event of a failure in PEM_read_bio_ex() we free the buffers we allocated for the header and data buffers. However we were not clearing the ptrs stored in *header and *data. Since, on success, the caller is responsible for freeing these ptrs this can potentially lead to a double free if the caller frees them even on failure. Thanks to Dawei Wang for reporting this issue. Based on a proposed patch by Kurt Roeckx. CVE-2022-4450 Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> |
||
|---|---|---|
| .. | ||
| build.info | ||
| pem_all.c | ||
| pem_err.c | ||
| pem_info.c | ||
| pem_lib.c | ||
| pem_local.h | ||
| pem_oth.c | ||
| pem_pk8.c | ||
| pem_pkey.c | ||
| pem_sign.c | ||
| pem_x509.c | ||
| pem_xaux.c | ||
| pvkfmt.c | ||