)]}'
{
  "commit": "62b0a0dea612e3683c6bd4bef359fceda00238e8",
  "tree": "46da1e6a25e540698cb6b896440c8f70fffe6d2b",
  "parents": [
    "388d679a4fd8a408e7c7c1867cc974cdc977ae63"
  ],
  "author": {
    "name": "Benjamin Kaduk",
    "email": "bkaduk@akamai.com",
    "time": "Fri Jun 09 13:31:11 2017 -0400"
  },
  "committer": {
    "name": "Rich Salz",
    "email": "rsalz@openssl.org",
    "time": "Fri Jun 09 13:32:29 2017 -0400"
  },
  "message": "Fix memory leaks in CTLOG_new_from_base64\n\nMove the call to ct_base64_decode(), which allocates, until after\nthe check for NULL output parameter.\n\nAlso place a cap on the number of padding characters used to decrement\nthe output length -- any more than two \u0027\u003d\u0027s is not permitted in a\nwell-formed base64 text.  Prior to this change, ct_base64_decode() would\nreturn a length of -1 along with allocated storage for an input of\n\"\u003d\u003d\u003d\u003d\".\n\nReviewed-by: Richard Levitte \u003clevitte@openssl.org\u003e\nReviewed-by: Rich Salz \u003crsalz@openssl.org\u003e\n(Merged from https://github.com/openssl/openssl/pull/3379)\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "f0bf3aff29d2686d2e0945149b85c35baa072e96",
      "old_mode": 33188,
      "old_path": "crypto/ct/ct_b64.c",
      "new_id": "109ffcdcf24ad5a90ebb167887d1ac346a0c23f1",
      "new_mode": 33188,
      "new_path": "crypto/ct/ct_b64.c"
    },
    {
      "type": "modify",
      "old_id": "6b36a434694b5149281d1a4b563af3cc67bceb79",
      "old_mode": 33188,
      "old_path": "test/ct_test.c",
      "new_id": "b551b85bc25ccb542b87d430e582823f8c9e2f3a",
      "new_mode": 33188,
      "new_path": "test/ct_test.c"
    }
  ]
}
