[29610] in CVS-changelog-for-Kerberos-V5
krb5 commit [krb5-1.14]: Fix leak in k5_free_cammac()
daemon@ATHENA.MIT.EDU (Tom Yu)
Fri Sep 2 17:07:25 2016
Date: Fri, 2 Sep 2016 17:04:22 -0400
From: Tom Yu <tlyu@mit.edu>
Message-Id: <201609022104.u82L4MTd023615@drugstore.mit.edu>
To: cvs-krb5@mit.edu
Reply-To: krbdev@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: cvs-krb5-bounces@mit.edu
https://github.com/krb5/krb5/commit/1590b0e06e0daae413fbf72effcd8335ec05b618
commit 1590b0e06e0daae413fbf72effcd8335ec05b618
Author: Greg Hudson <ghudson@mit.edu>
Date: Mon Jun 27 19:38:36 2016 -0400
Fix leak in k5_free_cammac()
free_vmac(), a helper function used by k5_free_cammac(), must free its
val pointer as well as the contents; otherwise the krb5_verifier_mac
container is leaked.
(cherry picked from commit d9d6e7e9aa619d5bd35fa6e4468683ee7ddb5e5d)
ticket: 8438
version_fixed: 1.14.4
src/lib/krb5/krb/kfree.c | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
diff --git a/src/lib/krb5/krb/kfree.c b/src/lib/krb5/krb/kfree.c
index f857522..a631807 100644
--- a/src/lib/krb5/krb/kfree.c
+++ b/src/lib/krb5/krb/kfree.c
@@ -863,6 +863,7 @@ free_vmac(krb5_context context, krb5_verifier_mac *val)
return;
krb5_free_principal(context, val->princ);
krb5_free_checksum_contents(context, &val->checksum);
+ free(val);
}
void
_______________________________________________
cvs-krb5 mailing list
cvs-krb5@mit.edu
https://mailman.mit.edu/mailman/listinfo/cvs-krb5
