shinys000114/libssh
1
0
Fork 0
mirror of https://git.libssh.org/projects/libssh.git synced 2026-02-09 09:54:25 +09:00
Code Issues Packages Projects Releases Wiki Activity

CVE-2020-1730: Fix a possible segfault when zeroing AES-CTR key

Browse Source 
Fixes T213

Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
Reviewed-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
(cherry picked from commit b36272eac1)
This commit is contained in:
Andreas Schneider
2020-02-11 11:52:33 +01:00
parent 7850307210
commit ec853bb86a
1 changed files with 6 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
src/libcrypto.c
View File

@@ -641,8 +641,12 @@ static void aes_ctr_encrypt(struct ssh_cipher_struct *cipher, void *in, void *ou
} }
static void aes_ctr_cleanup(struct ssh_cipher_struct *cipher){ static void aes_ctr_cleanup(struct ssh_cipher_struct *cipher){
explicit_bzero(cipher->aes_key, sizeof(*cipher->aes_key)); if (cipher != NULL) {
SAFE_FREE(cipher->aes_key); if (cipher->aes_key != NULL) {
explicit_bzero(cipher->aes_key, sizeof(*cipher->aes_key));
}
SAFE_FREE(cipher->aes_key);
}
} }
#endif /* HAVE_OPENSSL_EVP_AES_CTR */ #endif /* HAVE_OPENSSL_EVP_AES_CTR */