shinys000114/libssh
1
0
Fork 0
mirror of https://git.libssh.org/projects/libssh.git synced 2026-02-11 02:38:09 +09:00
Code Issues Packages Projects Releases Wiki Activity

CVE-2012-4559: Ensure we don't free blob or request twice.

Browse Source
This commit is contained in:
Andreas Schneider
2012-10-05 14:33:29 +02:00
parent b485463197
commit 1471f2c67a
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/agent.c
View File

@@ -439,6 +439,7 @@ ssh_string agent_sign_data(struct ssh_session_struct *session,
} }
ssh_string_free(blob); ssh_string_free(blob);
blob = NULL;
reply = ssh_buffer_new(); reply = ssh_buffer_new();
if (reply == NULL) { if (reply == NULL) {
@@ -451,6 +452,7 @@ ssh_string agent_sign_data(struct ssh_session_struct *session,
return NULL; return NULL;
} }
ssh_buffer_free(request); ssh_buffer_free(request);
request = NULL;
/* check if reply is valid */ /* check if reply is valid */
if (buffer_get_u8(reply, (uint8_t *) &type) != sizeof(uint8_t)) { if (buffer_get_u8(reply, (uint8_t *) &type) != sizeof(uint8_t)) {