From: Kurt Cancemi <kurt@x64architecture.com>
Date: Thu, 7 May 2015 20:12:33 +0000 (-0400)
Subject: Add missing NULL check in X509V3_parse_list()
X-Git-Tag: OpenSSL_1_1_0-pre1~1170
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=344c271eb339fc2982e9a3584a94e51112d84584;p=openssl

Add missing NULL check in X509V3_parse_list()

Matt's note: I added a call to X509V3err to Kurt's original patch.

RT#3840

Signed-off-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
---

diff --git a/crypto/x509v3/v3_utl.c b/crypto/x509v3/v3_utl.c
index debd8078ca..c6aab4b95d 100644
--- a/crypto/x509v3/v3_utl.c
+++ b/crypto/x509v3/v3_utl.c
@@ -286,6 +286,10 @@ STACK_OF(CONF_VALUE) *X509V3_parse_list(const char *line)
     int state;
     /* We are going to modify the line so copy it first */
     linebuf = BUF_strdup(line);
+    if (linebuf == NULL) {
+        X509V3err(X509V3_F_X509V3_PARSE_LIST, ERR_R_MALLOC_FAILURE);
+        goto err;
+    }
     state = HDR_NAME;
     ntmp = NULL;
     /* Go through all characters */