netsurf: branch master updated. release/3.9-512-g0140d1e

Commit Mailer Mon, 24 Feb 2020 07:01:52 -0800

Gitweb links:

...log 
http://git.netsurf-browser.org/netsurf.git/shortlog/0140d1e5b11c4117c6a2f1b565c8debacbae3a4d
...commit 
http://git.netsurf-browser.org/netsurf.git/commit/0140d1e5b11c4117c6a2f1b565c8debacbae3a4d
...tree 
http://git.netsurf-browser.org/netsurf.git/tree/0140d1e5b11c4117c6a2f1b565c8debacbae3a4d


The branch, master has been updated
       via  0140d1e5b11c4117c6a2f1b565c8debacbae3a4d (commit)
      from  63dd59bd2e8327091d2a57e4f4c7e5b2378eb2ce (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commitdiff 
http://git.netsurf-browser.org/netsurf.git/commit/?id=0140d1e5b11c4117c6a2f1b565c8debacbae3a4d
commit 0140d1e5b11c4117c6a2f1b565c8debacbae3a4d
Author: Michael Drake <[email protected]>
Commit: Michael Drake <[email protected]>

    Curl fetcher: Guard against read of uninitialised value.
    
    Fixes Coverity issue:
    
    CID 1419830:  Memory - illegal accesses  (UNINIT)
    >>>     Using uninitialized value "buf[depth]".

diff --git a/content/fetchers/curl.c b/content/fetchers/curl.c
index bd8c433..525c158 100644
--- a/content/fetchers/curl.c
+++ b/content/fetchers/curl.c
@@ -676,6 +676,9 @@ fetch_curl_store_certs_in_cache(struct curl_fetch_info *f)
 
        /* release the openssl memory buffer */
        for (depth = 0; depth < chain.depth; depth++) {
+               if (chain.certs[depth].err == SSL_CERT_ERR_CERT_MISSING) {
+                       continue;
+               }
                if (buf[depth] != NULL) {
                        BUF_MEM_free(buf[depth]);
                }


-----------------------------------------------------------------------

Summary of changes:
 content/fetchers/curl.c |    3 +++
 1 file changed, 3 insertions(+)

diff --git a/content/fetchers/curl.c b/content/fetchers/curl.c
index bd8c433..525c158 100644
--- a/content/fetchers/curl.c
+++ b/content/fetchers/curl.c
@@ -676,6 +676,9 @@ fetch_curl_store_certs_in_cache(struct curl_fetch_info *f)
 
        /* release the openssl memory buffer */
        for (depth = 0; depth < chain.depth; depth++) {
+               if (chain.certs[depth].err == SSL_CERT_ERR_CERT_MISSING) {
+                       continue;
+               }
                if (buf[depth] != NULL) {
                        BUF_MEM_free(buf[depth]);
                }


-- 
NetSurf Browser

_______________________________________________
netsurf-commits mailing list
[email protected]
http://listmaster.pepperfish.net/cgi-bin/mailman/listinfo/netsurf-commits-netsurf-browser.org

netsurf: branch master updated. release/3.9-512-g0140d1e

Reply via email to