Hi,
I suggest this quick patch in ssl/t1_enc.c, to avoid memory leaks (all
OS, all openssl versions):
476c476,479
< goto err;
---
> {
> OPENSSL_free(p1);
> goto err;
> }
New code:
if ((p1=(unsigned char *)OPENSSL_malloc(num)) == NULL)
goto err;
if ((p2=(unsigned char *)OPENSSL_malloc(num)) == NULL)
{
OPENSSL_free(p1);
goto err;
}
Thanks
Eric
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
