[MESOS-10041] Libprocess SSL verification can leak memory - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.9.0
Fix Version/s: 1.9.1, 1.10.0
Component/s: libprocess
Labels:
- libprocess
- ssl

Story Points:
1

Description

In process::network::openssl::verify(), when the SSL hostname validation scheme is set to "openssl", the function can return without freeing an X509 object, leading to a memory leak.

Attachments

Activity

People

Assignee:: Benno Evers

Reporter:: Greg Mann

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 22/Nov/19 20:22

Updated:: 23/Nov/19 00:15

Resolved:: 23/Nov/19 00:15