Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / a486449de508c9383c1c270427c78b151974464d
commita486449de508c9383c1c270427c78b151974464d[log] [tgz]
authorWilliam Lallemand <wlallemand@haproxy.com>Fri Jul 31 11:43:20 2020 +0200
committerChristopher Faulet <cfaulet@haproxy.com>Fri Sep 11 10:13:51 2020 +0200
treed6e84bf5e5564de9ba6fe549d93254b00aa02804
parent9972128fbb78d891d474b1d693e9a1235cad6d3d [diff]
BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()

Check the return of the calloc in ssl_sock_load_ocsp() which could lead
to a NULL dereference.

This was introduced by commit be2774d ("MEDIUM: ssl: Added support for
Multi-Cert OCSP Stapling").

Could be backported as far as 1.7.

(cherry picked from commit a560c06af7d9ba68cb0e82d1d25652b9a6a5a336)
Signed-off-by: Willy Tarreau <w@1wt.eu>
(cherry picked from commit ea22337f040fd563b5bd5457976d90568a0b4697)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
(cherry picked from commit fa5d70bc54b8f32649713ea7f9f8730de809278d)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
1 file changed
tree: d6e84bf5e5564de9ba6fe549d93254b00aa02804
  1. .github/
  2. contrib/
  3. doc/
  4. ebtree/
  5. examples/
  6. include/
  7. reg-tests/
  8. scripts/
  9. src/
  10. tests/
  11. .cirrus.yml
  12. .gitignore
  13. .travis.yml
  14. BRANCHES
  15. CHANGELOG
  16. CONTRIBUTING
  17. INSTALL
  18. LICENSE
  19. MAINTAINERS
  20. Makefile
  21. README
  22. ROADMAP
  23. SUBVERS
  24. VERDATE
  25. VERSION