From 272854367efc130fbd4f1a51840d80c630214e12 Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Date: Mon, 20 Jul 2015 21:49:28 +0200
Subject: [PATCH] Reset the output value on error in _gnutls_x509_dn_to_string()

Fixes CVE-2015-6251.
Upstream-Status: Backport

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
---
 lib/x509/common.c | 1 +
 1 file changed, 1 insertion(+), 0 deletions(-)

diff --git a/lib/x509/common.c b/lib/x509/common.c
index 94b6bbc..9a4b96f 100644
--- a/lib/x509/common.c
+++ b/lib/x509/common.c
@@ -469,6 +469,7 @@ _gnutls_x509_dn_to_string(const char *oid, void *value,
 		if (ret < 0) {
 			gnutls_assert();
 			gnutls_free(str->data);
+			str->data = NULL;
 			return ret;
 		}
 		str->size = size;
--
libgit2 0.23.4