Closed Bug 576983 Opened 14 years ago Closed 8 years ago

libssl: Memory leak when error occurs decoding a received record when decompression is active

Tracking

(Not tracked)

Status:

RESOLVED DUPLICATE of bug 1344660

People

(Reporter: briansmith, Unassigned)

References

(Depends on 1 open bug)

Details

Brian Smith (:briansmith, :bsmith, use NEEDINFO?)

Reporter

Description

•

14 years ago

When decompression is active, the plaintext->buf in ssl3_HandleRecord points to a buffer that is allocated within the function. When an error occurs (SSL_ERROR_BAD_MAC_READ), this buffer isn't freed before the function returns.

Brian Smith (:briansmith, :bsmith, use NEEDINFO?)

Reporter

Comment 1

•

14 years ago

The patch for Bug 576902 fixes this bug.

Depends on: 576902

Brian Smith (:briansmith, :bsmith, use NEEDINFO?)

Reporter

Updated

•

14 years ago

Blocks: 580679

Tim Taubert [:ttaubert] (inactive)

Updated

•

8 years ago

Status: NEW → RESOLVED

Closed: 8 years ago

Resolution: --- → DUPLICATE

You need to log in before you can comment on or make changes to this bug.

Bugzilla

libssl: Memory leak when error occurs decoding a received record when decompression is active

Categories

(NSS :: Libraries, defect)

Tracking

(Not tracked)

People

(Reporter: briansmith, Unassigned)

References

(Depends on 1 open bug)

Details

Crash Data

Security

(public)

User Story

Description

Comment 1

Updated

Updated