Overview

File opensc-0_19_0-CVE-2019-19480.patch of Package opensc.33736

Index: opensc-0.19.0/src/libopensc/pkcs15-prkey.c
===================================================================
--- opensc-0.19.0.orig/src/libopensc/pkcs15-prkey.c
+++ opensc-0.19.0/src/libopensc/pkcs15-prkey.c
@@ -258,6 +258,10 @@ int sc_pkcs15_decode_prkdf_entry(struct
 	memset(gostr3410_params, 0, sizeof(gostr3410_params));
 
 	r = sc_asn1_decode_choice(ctx, asn1_prkey, *buf, *buflen, buf, buflen);
+	if (r < 0) {
+		/* This might have allocated something. If so, clear it now */
+		free(info.subject.value);
+	}
 	if (r == SC_ERROR_ASN1_END_OF_CONTENTS)
 		return r;
 	LOG_TEST_RET(ctx, r, "PrKey DF ASN.1 decoding failed");
openSUSE Build Service is sponsored by
Places