[openssl-commits] [openssl] master update

Kurt Roeckx Sat, 12 May 2018 03:20:08 -0700

The branch master has been updated
       via  5f96a95e2562f026557f625e50c052e77c7bc2e8 (commit)
      from  a925e7dbf4c3bb01365c961df86da3ebfa1a6c27 (commit)



- Log -----------------------------------------------------------------
commit 5f96a95e2562f026557f625e50c052e77c7bc2e8
Author: Kurt Roeckx <k...@roeckx.be>
Date:   Sat May 12 12:08:14 2018 +0200

    Set sess to NULL after freeing it.
    
    Found by OSS-fuzz
    
    Bug introduced in commit 61fb59238dad6452a37ec14513fae617a4faef29
    
    Reviewed-by: Matt Caswell <m...@openssl.org>
    GH: #6235

-----------------------------------------------------------------------

Summary of changes:
 ssl/t1_lib.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index b312a14..c076782 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -1384,6 +1384,7 @@ SSL_TICKET_STATUS tls_decrypt_ticket(SSL *s, const 
unsigned char *etick,
         /* Some additional consistency checks */
         if (slen != 0) {
             SSL_SESSION_free(sess);
+            sess = NULL;
             ret = SSL_TICKET_NO_DECRYPT;
             goto end;
         }
_____
openssl-commits mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits

[openssl-commits] [openssl] master update

Reply via email to