From: Kurt Roeckx <kurt@roeckx.be>
Date: Sat, 12 May 2018 10:08:14 +0000 (+0200)
Subject: Set sess to NULL after freeing it.
X-Git-Tag: OpenSSL_1_1_1-pre7~57
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=5f96a95e2562f026557f625e50c052e77c7bc2e8;p=oweals%2Fopenssl.git

Set sess to NULL after freeing it.

Found by OSS-fuzz

Bug introduced in commit 61fb59238dad6452a37ec14513fae617a4faef29

Reviewed-by: Matt Caswell <matt@openssl.org>
GH: #6235
---

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index b312a14fab..c076782842 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -1384,6 +1384,7 @@ SSL_TICKET_STATUS tls_decrypt_ticket(SSL *s, const unsigned char *etick,
         /* Some additional consistency checks */
         if (slen != 0) {
             SSL_SESSION_free(sess);
+            sess = NULL;
             ret = SSL_TICKET_NO_DECRYPT;
             goto end;
         }