mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-11-23 03:15:43 +01:00
Fix potential double-free in ssl_conf_psk()
This commit is contained in:
parent
e34dcd7ec5
commit
ffb8180733
@ -3,6 +3,9 @@ mbed TLS ChangeLog (Sorted per branch, date)
|
||||
= mbed TLS 2.1.3 released 2015-10-xx
|
||||
|
||||
Security
|
||||
* Fix potential double free if mbedtls_ssl_conf_psk() is called more than
|
||||
once and some allocation fails. Cannot be forced remotely. Found by Guido
|
||||
Vranken, Intelworks.
|
||||
* The X509 max_pathlen constraint was not enforced on intermediate
|
||||
certificates. Found by Nicholas Wilson, fix and tests provided by
|
||||
Janos Follath. #280 and #319
|
||||
|
@ -5725,6 +5725,8 @@ int mbedtls_ssl_conf_psk( mbedtls_ssl_config *conf,
|
||||
{
|
||||
mbedtls_free( conf->psk );
|
||||
mbedtls_free( conf->psk_identity );
|
||||
conf->psk = NULL;
|
||||
conf->psk_identity = NULL;
|
||||
}
|
||||
|
||||
if( ( conf->psk = mbedtls_calloc( 1, psk_len ) ) == NULL ||
|
||||
|
Loading…
Reference in New Issue
Block a user