From c38761171f428d80cd7906b12a0cdac6d1285a7d Mon Sep 17 00:00:00 2001
From: Scott Wilson <scott@sawilson.xyz>
Date: Thu, 31 Oct 2019 22:37:51 +1100
Subject: [PATCH] Fix potential memory leak in dh_ameth.c

Free dukm in error handling of dh_cms_encrypt()

Fixes #10294

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Patrick Steuer <patrick.steuer@de.ibm.com>
(Merged from https://github.com/openssl/openssl/pull/10310)

(cherry picked from commit 6624e1f7b6a397948561e9cc2774f0c8af1d2c79)
---
 crypto/dh/dh_ameth.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/crypto/dh/dh_ameth.c b/crypto/dh/dh_ameth.c
index 60af9e2159..d53004080d 100644
--- a/crypto/dh/dh_ameth.c
+++ b/crypto/dh/dh_ameth.c
@@ -901,6 +901,7 @@ static int dh_cms_encrypt(CMS_RecipientInfo *ri)
  err:
     OPENSSL_free(penc);
     X509_ALGOR_free(wrap_alg);
+    OPENSSL_free(dukm);
     return rv;
 }
 
-- 
2.25.1