[16048] in Kerberos-V5-bugs

home help back first fref pref prev next nref lref last post

[krbdev.mit.edu #8696] Resource leak in krb5_425_conv_principal()

daemon@ATHENA.MIT.EDU (Bean Zhang via RT)
Fri Jun 15 10:51:25 2018

Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Bean Zhang via RT" <rt-comment@KRBDEV-PROD-APP-1.mit.edu>
In-Reply-To: <rt-8696@krbdev.mit.edu>
Message-ID: <rt-8696-48634.10.035952339033@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #8696'":;
Date: Fri, 15 Jun 2018 10:51:19 -0400 (EDT)
Reply-To: rt-comment@KRBDEV-PROD-APP-1.mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu

Hi Team,

krb5_425_conv_principal() in krb5-1.16.1/src/lib/krb5/krb/conv_princ.c
calls profile_iterator(&iterator, &realm_name, &dummy_value) in a while loop,
later if break this while loop and run into "return retval", then the allocated memory
dummy_value points to will not be freed when leaves this function.

The fix is to call profile_release_string (dummy_value) before "return retval".

Could someone help to take a look?

Thanks,
Bean

_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs

home help back first fref pref prev next nref lref last post