[openssh-commits] [openssh] 05/07: upstream: memleak of DH public bignum; found with libfuzzer
git+noreply at mindrot.org
git+noreply at mindrot.org
Fri Dec 4 13:43:58 AEDT 2020
This is an automated email from the git hooks/post-receive script.
djm pushed a commit to branch master
in repository openssh.
commit 3b98b6e27f8a122dbfda9966b1afeb3e371cce91
Author: djm at openbsd.org <djm at openbsd.org>
Date: Fri Dec 4 02:29:25 2020 +0000
upstream: memleak of DH public bignum; found with libfuzzer
OpenBSD-Commit-ID: 0e913b542c3764b100b1571fdb0d0e5cc086fe97
---
kexdh.c | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/kexdh.c b/kexdh.c
index 6e0159f9..001dd12d 100644
--- a/kexdh.c
+++ b/kexdh.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: kexdh.c,v 1.33 2020/05/08 05:13:14 djm Exp $ */
+/* $OpenBSD: kexdh.c,v 1.34 2020/12/04 02:29:25 djm Exp $ */
/*
* Copyright (c) 2019 Markus Friedl. All rights reserved.
*
@@ -194,6 +194,7 @@ kex_dh_dec(struct kex *kex, const struct sshbuf *dh_blob,
*shared_secretp = buf;
buf = NULL;
out:
+ BN_free(dh_pub);
DH_free(kex->dh);
kex->dh = NULL;
sshbuf_free(buf);
--
To stop receiving notification emails like this one, please contact
djm at mindrot.org.
More information about the openssh-commits
mailing list