Hi,
I suggest some quick patches in crypto/asn1/x_x509a.c (if not, possible
memory leaks)
It concerns all OS, all openssl versions.
142c142,145
< if(!(aux = aux_get(x))) return 0;
---
> if(!(aux = aux_get(x))) {
> ASN1_OBJECT_free(objtmp);
> return 0;
> }
144c147,150
< && !(aux->trust = sk_ASN1_OBJECT_new_null())) return 0;
---
> && !(aux->trust = sk_ASN1_OBJECT_new_null())) {
> ASN1_OBJECT_free(objtmp);
> return 0;
> }
152,153c158,162
< if(!(objtmp = OBJ_dup(obj))) return 0;
< if(!(aux = aux_get(x))) return 0;
---
> if(!(objtmp = OBJ_dup(obj))) return 0;
> if(!(aux = aux_get(x))) {
> ASN1_OBJECT_free(objtmp); /* Coverity AR#94040 */
> return 0;
> }
155c164,167
< && !(aux->reject = sk_ASN1_OBJECT_new_null())) return 0;
---
> && !(aux->reject = sk_ASN1_OBJECT_new_null())) {
> ASN1_OBJECT_free(objtmp);
> return 0;
> }
Thanks
Eric
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
