gpg: Fix double free of internal data.

* g10/sig-check.c (check_signature_over_key_or_uid): Do not free in no-sig-cache mode if allocated by caller. -- GnuPG-bug-id: 7547 Fixes-commit: 44cdb9d73f1a0b7d2c8483a119b9c4d6caabc1ec
author: Werner Koch <[email protected]> 2025-03-13 10:35:34 +0000
committer: Werner Koch <[email protected]> 2025-03-13 10:35:34 +0000
commit: 4be25979a6b3e2a79d7c9667b07db8b09fb046e9 (patch)
tree: 3bf2dcdaaef27a61bccd929da9cd707a5bbce43c
parent: gpg: Fix regression for the recent malicious subkey DoS fix. (diff)
download: gnupg-4be25979a6b3e2a79d7c9667b07db8b09fb046e9.tar.gz
gnupg-4be25979a6b3e2a79d7c9667b07db8b09fb046e9.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/g10/sig-check.c b/g10/sig-check.c
index 456c29320..ed83c23f9 100644
--- a/g10/sig-check.c
+++ b/g10/sig-check.c
@@ -1007,7 +1007,8 @@ check_signature_over_key_or_uid (ctrl_t ctrl, PKT_public_key *signer,
               rc = get_pubkey_for_sig (ctrl, signer, sig, NULL, NULL);
               if (rc)
                 {
-                  xfree (signer);
+                  if (signer_alloced != 1)
+                    xfree (signer);
                   signer = NULL;
                   signer_alloced = 0;
                   goto leave;
author	Werner Koch <[email protected]>	2025-03-13 10:35:34 +0000
committer	Werner Koch <[email protected]>	2025-03-13 10:35:34 +0000
commit	4be25979a6b3e2a79d7c9667b07db8b09fb046e9 (patch)
tree	3bf2dcdaaef27a61bccd929da9cd707a5bbce43c
parent	gpg: Fix regression for the recent malicious subkey DoS fix. (diff)
download	gnupg-4be25979a6b3e2a79d7c9667b07db8b09fb046e9.tar.gz gnupg-4be25979a6b3e2a79d7c9667b07db8b09fb046e9.zip