[16060] in Kerberos-V5-bugs

home help back first fref pref prev next nref lref last post

[krbdev.mit.edu #8701] Resource leak in kr_remote_send()

daemon@ATHENA.MIT.EDU (Bean Zhang via RT)
Tue Jun 19 11:26:30 2018

Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Bean Zhang via RT" <rt-comment@KRBDEV-PROD-APP-1.mit.edu>
In-Reply-To: <rt-8701@krbdev.mit.edu>
Message-ID: <rt-8701-48659.11.2391191954635@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #8701'":;
Date: Tue, 19 Jun 2018 11:26:25 -0400 (EDT)
Reply-To: rt-comment@KRBDEV-PROD-APP-1.mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu

Hi Team,

In kr_remote_send() of krb5-1.16.1/src/lib/krad/remote.c,
When calls request_new(), will store the allocated memory to r,
later if remote_add_flags() fails, will goto error label,
then this function returns without freeing the memory that r points to.

The fix is to call "request_free(r)" when run into error label.

Could someone help to take a look?

Thanks,
Bean

_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs

home help back first fref pref prev next nref lref last post