Hi,

I suggest some quick patches in crypto/asn1/x_x509a.c (if not, possible
memory leaks)
It concerns all OS, all openssl versions.

142c142,145
< if(!(aux =3D aux_get(x))) return 0;
---
> if(!(aux =3D aux_get(x))) {
> ASN1_OBJECT_free(objtmp); =20
> return 0;
> }

144c147,150
< && !(aux->trust =3D sk_ASN1_OBJECT_new_null())) return 0;
---
> && !(aux->trust =3D sk_ASN1_OBJECT_new_null())) {
> ASN1_OBJECT_free(objtmp);
> return 0;
> }

152,153c158,162
< if(!(objtmp =3D OBJ_dup(obj))) return 0;
< if(!(aux =3D aux_get(x))) return 0;
---
> if(!(objtmp =3D OBJ_dup(obj))) return 0;
> if(!(aux =3D aux_get(x))) {
> ASN1_OBJECT_free(objtmp); /* Coverity AR#94040 */
> return 0;
> }

155c164,167
< && !(aux->reject =3D sk_ASN1_OBJECT_new_null())) return 0=
;
---
> && !(aux->reject =3D sk_ASN1_OBJECT_new_null())) {
> ASN1_OBJECT_free(objtmp);
> return 0;
> }



Thanks
Eric

__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majordomo@openssl.org