shinys000114/libssh
1
0
Fork 0
mirror of https://git.libssh.org/projects/libssh.git synced 2026-02-11 18:50:28 +09:00
Code Issues Packages Projects Releases Wiki Activity

CVE-2025-8277: wrapper: Free cv25519 private key on cleanup

Browse Source 
Signed-off-by: Jakub Jelen <jjelen@redhat.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
This commit is contained in:
Jakub Jelen
2025-08-06 14:22:25 +02:00
parent d357a9f3e2
commit 9ada7aa0e4
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/wrapper.c
View File

@@ -188,6 +188,8 @@ void crypto_free(struct ssh_crypto_struct *crypto)
#endif #endif
#ifdef HAVE_LIBCRYPTO #ifdef HAVE_LIBCRYPTO
EVP_PKEY_free(crypto->curve25519_privkey); EVP_PKEY_free(crypto->curve25519_privkey);
#elif defined(HAVE_GCRYPT_CURVE25519)
gcry_sexp_release(crypto->curve25519_privkey);
#endif #endif
SAFE_FREE(crypto->dh_server_signature); SAFE_FREE(crypto->dh_server_signature);
if (crypto->session_id != NULL) { if (crypto->session_id != NULL) {