[16062] in Kerberos-V5-bugs

home help back first fref pref prev next nref lref last post

[krbdev.mit.edu #8703] Resource leak in kr_remote_send()

daemon@ATHENA.MIT.EDU (Bean Zhang via RT)
Tue Jun 19 11:27:18 2018

Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Bean Zhang via RT" <rt-comment@KRBDEV-PROD-APP-1.mit.edu>
In-Reply-To: <rt-8703@krbdev.mit.edu>
Message-ID: <rt-8703-48661.15.4046625458546@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #8703'":;
Date: Tue, 19 Jun 2018 11:27:12 -0400 (EDT)
Reply-To: rt-comment@KRBDEV-PROD-APP-1.mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu

In cache_set() of krb5-1.16.1/src/lib/rpc/svc_udp.c,
When calls ALLOC(), will store the allocated memory to victim,
later if mem_alloc() fails, this function returns without
freeing the memory that victim points to.

The fix is to call "mem_free(r)" if this function returns on calling mem_alloc() failure.

Could someone help to take a look?

Thanks,
Bean

_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs

home help back first fref pref prev next nref lref last post