[31146] in CVS-changelog-for-Kerberos-V5
krb5 commit: Fix memory leak in SPAKE kdcpreauth module
daemon@ATHENA.MIT.EDU (ghudson@mit.edu)
Tue May 31 19:38:55 2022
From: ghudson@mit.edu
To: <cvs-krb5@mit.edu>
Message-ID: <20220531233822.23D03104DFD@krbdev.mit.edu>
Date: Tue, 31 May 2022 19:38:22 -0400 (EDT)
MIME-Version: 1.0
Reply-To: krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: cvs-krb5-bounces@mit.edu
https://github.com/krb5/krb5/commit/445e1b32767af3041ffd1823996d05ffec6fc9d5
commit 445e1b32767af3041ffd1823996d05ffec6fc9d5
Author: sashan <anedvedicky@gmail.com>
Date: Thu May 26 08:51:10 2022 +0200
Fix memory leak in SPAKE kdcpreauth module
Commit ff57dc682a27bd205d715f3c0bed84890f2453c4 introduced a memory
leak into verify_response(). reply_key is no longer passed to the
callback and therefore needs to be freed by this function.
[ghudson@mit.edu: rewrote commit message]
ticket: 9061 (new)
tags: pullup
target_version: 1.20-next
src/plugins/preauth/spake/spake_kdc.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/src/plugins/preauth/spake/spake_kdc.c b/src/plugins/preauth/spake/spake_kdc.c
index 687cdc9e0..1a772d450 100644
--- a/src/plugins/preauth/spake/spake_kdc.c
+++ b/src/plugins/preauth/spake/spake_kdc.c
@@ -469,6 +469,7 @@ cleanup:
zapfree(spakeresult.data, spakeresult.length);
krb5_free_data_contents(context, &thash);
krb5_free_keyblock(context, k1);
+ krb5_free_keyblock(context, reply_key);
k5_free_spake_factor(context, factor);
(*respond)(arg, ret, NULL, NULL, NULL);
}
_______________________________________________
cvs-krb5 mailing list
cvs-krb5@mit.edu
https://mailman.mit.edu/mailman/listinfo/cvs-krb5
