mirror of https://github.com/openssl/openssl.git
b5ab449e26
When CMS_EncryptedData_set1_key is called repeatedly it will
leak data on the second call. This was because
cms->d.encryptedData was already set and needed to be cleared
before the call to M_ASN1_new_of.
Fixes: #28606
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28668)
(cherry picked from commit
|
||
|---|---|---|
| .. | ||
| build.info | ||
| cms_asn1.c | ||
| cms_att.c | ||
| cms_cd.c | ||
| cms_dd.c | ||
| cms_dh.c | ||
| cms_ec.c | ||
| cms_enc.c | ||
| cms_env.c | ||
| cms_err.c | ||
| cms_ess.c | ||
| cms_io.c | ||
| cms_kari.c | ||
| cms_lib.c | ||
| cms_local.h | ||
| cms_pwri.c | ||
| cms_rsa.c | ||
| cms_sd.c | ||
| cms_smime.c | ||