[28407] in CVS-changelog-for-Kerberos-V5
krb5 commit [krb5-1.12]: Fix memory leak in krb5_verify_init_creds
daemon@ATHENA.MIT.EDU (Tom Yu)
Thu Jun 26 16:54:08 2014
Date: Thu, 26 Jun 2014 16:53:40 -0400
From: Tom Yu <tlyu@mit.edu>
Message-Id: <201406262053.s5QKres0031625@drugstore.mit.edu>
To: cvs-krb5@mit.edu
Reply-To: krbdev@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: cvs-krb5-bounces@mit.edu
https://github.com/krb5/krb5/commit/5105476b8a83039a787b666fe2718763a2a69c7b
commit 5105476b8a83039a787b666fe2718763a2a69c7b
Author: Nalin Dahyabhai <nalin@dahyabhai.net>
Date: Mon Feb 17 17:14:20 2014 -0500
Fix memory leak in krb5_verify_init_creds
When copying most of the credentials from one cache to another in
copy_creds_except (called from get_vfy_cred, from
krb5_verify_init_creds), we need to free all of the credentials that
we read, not just the ones we copied.
[ghudson@mit.edu: edited commit message]
(cherry picked from commit 27b136d2e3181e787b2d4a03ee712d5d5137f5cd)
ticket: 7875
version_fixed: 1.12.2
status: resolved
src/lib/krb5/krb/vfy_increds.c | 6 +++---
1 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/src/lib/krb5/krb/vfy_increds.c b/src/lib/krb5/krb/vfy_increds.c
index e88a37f..4833992 100644
--- a/src/lib/krb5/krb/vfy_increds.c
+++ b/src/lib/krb5/krb/vfy_increds.c
@@ -69,9 +69,9 @@ copy_creds_except(krb5_context context, krb5_ccache incc,
while (!(ret = krb5_cc_next_cred(context, incc, &cur, &creds))) {
if (krb5_principal_compare(context, princ, creds.server))
- continue;
-
- ret = krb5_cc_store_cred(context, outcc, &creds);
+ ret = 0;
+ else
+ ret = krb5_cc_store_cred(context, outcc, &creds);
krb5_free_cred_contents(context, &creds);
if (ret)
goto cleanup;
_______________________________________________
cvs-krb5 mailing list
cvs-krb5@mit.edu
https://mailman.mit.edu/mailman/listinfo/cvs-krb5
