libressl mem leak

Sun, 15 Jun 2014 14:56:20 -0700 

Hello,

in aes_gcm_cleanup after rev 1.21,
gctx is zero-ed before trying to free gctx->iv.

Regards,

Index: src/lib/libssl/src/crypto/evp/e_aes.c
===================================================================
RCS file: /cvs/src/lib/libssl/src/crypto/evp/e_aes.c,v
retrieving revision 1.21
diff -u -r1.21 e_aes.c
--- src/lib/libssl/src/crypto/evp/e_aes.c 15 Jun 2014 15:41:25 -0000 1.21
+++ src/lib/libssl/src/crypto/evp/e_aes.c 15 Jun 2014 21:01:31 -0000
@@ -651,9 +651,9 @@
 {
  EVP_AES_GCM_CTX *gctx = c->cipher_data;

- OPENSSL_cleanse(gctx, sizeof(*gctx));
  if (gctx->iv != c->iv)
  free(gctx->iv);
+ OPENSSL_cleanse(gctx, sizeof(*gctx));
  return 1;
 }

Reply via email to