summaryrefslogtreecommitdiffstats
path: root/src/crypto
diff options
context:
space:
mode:
authorAdam Langley <agl@google.com>2015-05-19 13:34:29 -0700
committerAdam Langley <agl@google.com>2015-05-19 13:34:29 -0700
commit190eb169ed96e72590cae9e6c3258e88c8efc7c0 (patch)
tree1325b62ede6bfc77106900a778d733f23050acea /src/crypto
parent3ca955adbf31e6991e12f19f7c082b780e424172 (diff)
downloadexternal_boringssl-190eb169ed96e72590cae9e6c3258e88c8efc7c0.zip
external_boringssl-190eb169ed96e72590cae9e6c3258e88c8efc7c0.tar.gz
external_boringssl-190eb169ed96e72590cae9e6c3258e88c8efc7c0.tar.bz2
external/boringssl: fix use after free in X509.
This change imports upstream's beeb0fa7 and fixes a UAF in X509 if certain, 1.0.2-only, APIs are used. Change-Id: If8268c17828f7202ce57421629da1a53a9e4dcc5
Diffstat (limited to 'src/crypto')
-rw-r--r--src/crypto/x509v3/v3_utl.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/src/crypto/x509v3/v3_utl.c b/src/crypto/x509v3/v3_utl.c
index 27a91ff..d79f0de 100644
--- a/src/crypto/x509v3/v3_utl.c
+++ b/src/crypto/x509v3/v3_utl.c
@@ -879,9 +879,9 @@ static int do_check_string(ASN1_STRING *a, int cmp_type, equal_fn equal,
if (astrlen < 0)
return -1;
rv = equal(astr, astrlen, (unsigned char *)b, blen, flags);
- OPENSSL_free(astr);
if (rv > 0 && peername)
*peername = BUF_strndup((char *)astr, astrlen);
+ OPENSSL_free(astr);
}
return rv;
}