[CVE-2022-38178] eddsa verify leaksubmit/tizen_6.0/20230321.113815 accepted/tizen/6.0/unified/20230322.053243

Free ctx on invalid siglen Change-Id: I7682b5711d9799f117021c3dc96881593311b061
author: Seonah Moon <seonah1.moon@samsung.com> 2023-02-23 19:43:42 +0900
committer: Seonah Moon <seonah1.moon@samsung.com> 2023-03-21 20:30:07 +0900
commit: d1e8304a9ebd688fff94064926f92fa4480a6987 (patch)
tree: d56731d9602fc7a3410a7ab0df79549504bd8cef
parent: 1f80535588f1816d7a32d47189fe67decc592083 (diff)
download: bind-d1e8304a9ebd688fff94064926f92fa4480a6987.tar.gz
bind-d1e8304a9ebd688fff94064926f92fa4480a6987.tar.bz2
bind-d1e8304a9ebd688fff94064926f92fa4480a6987.zip
2 files changed, 5 insertions, 2 deletions
diff --git a/CHANGES b/CHANGES
index b3831d3d..f13283cc 100644
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,6 @@
+5962.	[security]	Fix memory leak in EdDSA verify processing.
+			(CVE-2022-38178) [GL #3487]
+
 5961.	[security]	Fix memory leak in ECDSA verify processing.
 			(CVE-2022-38177) [GL #3487]
 
diff --git a/lib/dns/openssleddsa_link.c b/lib/dns/openssleddsa_link.c
index 32bd02ef..8239c666 100644
--- a/lib/dns/openssleddsa_link.c
+++ b/lib/dns/openssleddsa_link.c
@@ -405,11 +405,11 @@ openssleddsa_verify(dst_context_t *dctx, const isc_region_t *sig) {
 	}
 #endif
 	if (siglen == 0) {
-		return (ISC_R_NOTIMPLEMENTED);
+		DST_RET(ISC_R_NOTIMPLEMENTED);
 	}
 
 	if (sig->length != siglen)
-		return (DST_R_VERIFYFAILURE);
+		DST_RET(DST_R_VERIFYFAILURE);
 
 	isc_buffer_usedregion(buf, &tbsreg);
author	Seonah Moon <seonah1.moon@samsung.com>	2023-02-23 19:43:42 +0900
committer	Seonah Moon <seonah1.moon@samsung.com>	2023-03-21 20:30:07 +0900
commit	d1e8304a9ebd688fff94064926f92fa4480a6987 (patch)
tree	d56731d9602fc7a3410a7ab0df79549504bd8cef
parent	1f80535588f1816d7a32d47189fe67decc592083 (diff)
download	bind-d1e8304a9ebd688fff94064926f92fa4480a6987.tar.gz bind-d1e8304a9ebd688fff94064926f92fa4480a6987.tar.bz2 bind-d1e8304a9ebd688fff94064926f92fa4480a6987.zip