From 906cc7e7e95047981677a43743cb7c4aa2bb3aab Mon Sep 17 00:00:00 2001
From: Jakub Jelen <jjelen@redhat.com>
Date: Wed, 15 Jul 2020 20:31:43 +0200
Subject: pki: Avoid memory leak on invalid curve NID

Thanks oss-fuzz

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24166

Signed-off-by: Jakub Jelen <jjelen@redhat.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
---
 src/pki.c | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'src')

diff --git a/src/pki.c b/src/pki.c
index 9e28ea6e..a379d6c7 100644
--- a/src/pki.c
+++ b/src/pki.c
@@ -1373,6 +1373,8 @@ static int pki_import_pubkey_buffer(ssh_buffer buffer,
                 nid = pki_key_ecdsa_nid_from_name(ssh_string_get_char(i));
                 SSH_STRING_FREE(i);
                 if (nid == -1) {
+                    ssh_string_burn(e);
+                    SSH_STRING_FREE(e);
                     goto fail;
                 }
 
-- 
cgit v1.2.3