Fix double-free in OpenSSL's SSL ECDH code.

It has yet to be determined if this warrants a FreeBSD Security Advisory, but we might as well get it fixed in the normal branches. Obtained from: OpenSSL CVS Security: CVE-2010-2939 X-MFC after: Not long...
author: simon <simon@FreeBSD.org> 2010-11-14 09:33:47 +0000
committer: simon <simon@FreeBSD.org> 2010-11-14 09:33:47 +0000
commit: 5b9f7b2fdedc1921c3f412dc5da3114160d7d5d3 (patch)
tree: f0d3447e48df40070f6c9c54c3868341d5961bdd /crypto/openssl
parent: d4de3c13058a353d418e727142942892cb1822c1 (diff)
download: FreeBSD-src-5b9f7b2fdedc1921c3f412dc5da3114160d7d5d3.zip
FreeBSD-src-5b9f7b2fdedc1921c3f412dc5da3114160d7d5d3.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/crypto/openssl/ssl/s3_clnt.c b/crypto/openssl/ssl/s3_clnt.c
index e5138b6..aa53506 100644
--- a/crypto/openssl/ssl/s3_clnt.c
+++ b/crypto/openssl/ssl/s3_clnt.c
@@ -1377,6 +1377,7 @@ int ssl3_get_key_exchange(SSL *s)
 		s->session->sess_cert->peer_ecdh_tmp=ecdh;
 		ecdh=NULL;
 		BN_CTX_free(bn_ctx);
+		bn_ctx = NULL;
 		EC_POINT_free(srvr_ecpoint);
 		srvr_ecpoint = NULL;
 		}
author	simon <simon@FreeBSD.org>	2010-11-14 09:33:47 +0000
committer	simon <simon@FreeBSD.org>	2010-11-14 09:33:47 +0000
commit	5b9f7b2fdedc1921c3f412dc5da3114160d7d5d3 (patch)
tree	f0d3447e48df40070f6c9c54c3868341d5961bdd /crypto/openssl
parent	d4de3c13058a353d418e727142942892cb1822c1 (diff)
download	FreeBSD-src-5b9f7b2fdedc1921c3f412dc5da3114160d7d5d3.zip FreeBSD-src-5b9f7b2fdedc1921c3f412dc5da3114160d7d5d3.tar.gz