digsig: Fix memory leakage in digsig_verify_rsa()
authorYOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Fri, 25 Jan 2013 14:54:20 +0000 (16:54 +0200)
committerJames Morris <james.l.morris@oracle.com>
Fri, 1 Feb 2013 04:59:33 +0000 (15:59 +1100)
digsig_verify_rsa() does not free kmalloc'ed buffer returned by
mpi_get_buffer().

Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com>
Cc: stable@vger.kernel.org
Signed-off-by: James Morris <james.l.morris@oracle.com>
lib/digsig.c

index 8c0e62975c88d49a09c9c29ab9e7a2b1334a6587..dc2be7ed1765b0dc3675c97b2cf862dc969dcd90 100644 (file)
@@ -162,6 +162,8 @@ static int digsig_verify_rsa(struct key *key,
        memset(out1, 0, head);
        memcpy(out1 + head, p, l);
 
+       kfree(p);
+
        err = pkcs_1_v1_5_decode_emsa(out1, len, mblen, out2, &len);
        if (err)
                goto err;