Fix memory leak in x509_crl_parse() The memory leak call was caused by missing calls to pem_free().

commit: 03af0e0151b82e93fb43100dc44fa57c5742278d [log] [tgz]
author: Andres AG <andres.amayagarcia@arm.com> Mon Jan 23 14:58:27 2017 +0000
committer: Simon Butcher <simon.butcher@arm.com> Tue Feb 28 17:36:06 2017 +0000
tree: d8960ee2f25f6dde89b0d1498f163a2d7c4a0829
parent: 9fb2828aeeb16a1e76ef13c3b0eae199d613a213 [diff]
diff --git a/ChangeLog b/ChangeLog
index fd7a3f5..12c541c 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -37,6 +37,9 @@
      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
    * Fixed potential arithmetic overflow in mbedtls_base64_decode() that could
      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
+   * Fix potential memory leak in x509_crl_parse(). The leak was caused by
+     missing calls to pem_free() in cases when a
+     POLARSSL_ERR_PEM_NO_HEADER_FOOTER_PRESENT error was encountered.
 
 = mbed TLS 1.3.18 branch 2016-10-17
 

diff --git a/library/x509_crl.c b/library/x509_crl.c
index 0d92bb1..b2b0bed 100644
--- a/library/x509_crl.c
+++ b/library/x509_crl.c

@@ -520,16 +520,17 @@
             if( ( ret = x509_crl_parse_der( chain,
                                             pem.buf, pem.buflen ) ) != 0 )
             {
+                pem_free( &pem );
                 return( ret );
             }
-
-            pem_free( &pem );
         }
         else if( is_pem )
         {
             pem_free( &pem );
             return( ret );
         }
+
+        pem_free( &pem );
     }
     while( is_pem && buflen > 0 );
commit	03af0e0151b82e93fb43100dc44fa57c5742278d	[log] [tgz]
author	Andres AG <andres.amayagarcia@arm.com>	Mon Jan 23 14:58:27 2017 +0000
committer	Simon Butcher <simon.butcher@arm.com>	Tue Feb 28 17:36:06 2017 +0000
tree	d8960ee2f25f6dde89b0d1498f163a2d7c4a0829
parent	9fb2828aeeb16a1e76ef13c3b0eae199d613a213 [diff]