[29363] in CVS-changelog-for-Kerberos-V5
krb5 commit [krb5-1.13]: Fix memory leak on error in KDC
daemon@ATHENA.MIT.EDU (Tom Yu)
Wed Apr 6 14:07:18 2016
Date: Wed, 6 Apr 2016 14:07:09 -0400
From: Tom Yu <tlyu@mit.edu>
Message-Id: <201604061807.u36I79Ww007781@drugstore.mit.edu>
To: cvs-krb5@mit.edu
Reply-To: krbdev@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: cvs-krb5-bounces@mit.edu
https://github.com/krb5/krb5/commit/94ea7ae4039c553b3d7df5da384240d612782ba1
commit 94ea7ae4039c553b3d7df5da384240d612782ba1
Author: Greg Hudson <ghudson@mit.edu>
Date: Thu Feb 25 11:19:17 2016 -0500
Fix memory leak on error in KDC decrypt_2ndtkt()
Make sure to release the server principal entry in the cleanup handler
if it is not assigned to the output parameter. Reported by Will
Fiveash.
(cherry picked from commit a1faaa4d6a404e3103f45e639b8890c3b141dfe1)
ticket: 8362
version_fixed: 1.13.5
status: resolved
tags: -pullup
src/kdc/do_tgs_req.c | 4 +++-
1 files changed, 3 insertions(+), 1 deletions(-)
diff --git a/src/kdc/do_tgs_req.c b/src/kdc/do_tgs_req.c
index fce478e..48e822b 100644
--- a/src/kdc/do_tgs_req.c
+++ b/src/kdc/do_tgs_req.c
@@ -952,7 +952,7 @@ decrypt_2ndtkt(kdc_realm_t *kdc_active_realm, krb5_kdc_req *req,
const char **status)
{
krb5_error_code retval;
- krb5_db_entry *server;
+ krb5_db_entry *server = NULL;
krb5_keyblock *key;
krb5_kvno kvno;
krb5_ticket *stkt;
@@ -979,7 +979,9 @@ decrypt_2ndtkt(kdc_realm_t *kdc_active_realm, krb5_kdc_req *req,
goto cleanup;
}
*server_out = server;
+ server = NULL;
cleanup:
+ krb5_db_free_principal(kdc_context, server);
return retval;
}
_______________________________________________
cvs-krb5 mailing list
cvs-krb5@mit.edu
https://mailman.mit.edu/mailman/listinfo/cvs-krb5
