[gnutls-devel] GnuTLS | memleak in wrap_nettle_mpi_init (#1328)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Thu Nov 16 10:08:16 CET 2023




xuraoqing commented: https://gitlab.com/gnutls/gnutls/-/issues/1328#note_1651254565

It seems that the issue is caused by the fuzz test code itself.
When a connection is set up between the client and server, security_parameters.pversion is changed to TLS1.2, and then restored to TLS1.3 in _gnutls_parse_hello_extensions in line 709 of handshake.c. In this case, the data received by fuzzing is 0303, which cannot be parsed by the interface. The protocol is not restored to TLS1.3. The program uses the processing logic of TLS1.2. After data such as session->key.proto.tls12.dh.params is allocated, gnutls_handshake returns a failure value. Run the gnutls_handshake command again.
After the gnutls_handshake command is executed again, the protocol is changed to TLS1.3. When the gnutls_deinit command is executed to release memory, the TLS1.3 protocol is checked and the tls12.dh.params data is not released. As a result, memory leakage occurs.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1328#note_1651254565
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20231116/f7e8cf3c/attachment.html>


More information about the Gnutls-devel mailing list