From 462082eacbd37778a173afb6b84c6f4d898a18b5 Mon Sep 17 00:00:00 2001
From: Damien Miller <djm@google.com>
Date: Tue, 30 Dec 2014 08:16:11 +1100
Subject: avoid uninitialised free of ldns_res

If an invalid rdclass was passed to getrrsetbyname() then
this would execute a free on an uninitialised pointer.
OpenSSH only ever calls this with a fixed and valid rdclass.

Reported by Joshua Rogers
---
 openbsd-compat/getrrsetbyname-ldns.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/openbsd-compat/getrrsetbyname-ldns.c b/openbsd-compat/getrrsetbyname-ldns.c
index 343720f10..4647b623b 100644
--- a/openbsd-compat/getrrsetbyname-ldns.c
+++ b/openbsd-compat/getrrsetbyname-ldns.c
@@ -69,7 +69,7 @@ getrrsetbyname(const char *hostname, unsigned int rdclass,
 	struct rrsetinfo *rrset = NULL;
 	struct rdatainfo *rdata;
 	size_t len;
-	ldns_resolver *ldns_res;
+	ldns_resolver *ldns_res = NULL;
 	ldns_rdf *domain = NULL;
 	ldns_pkt *pkt = NULL;
 	ldns_rr_list *rrsigs = NULL, *rrdata = NULL;
-- 
cgit v1.2.3