[16065] in Kerberos-V5-bugs
[krbdev.mit.edu #8705] Resource leak in resolve_target_cache()
daemon@ATHENA.MIT.EDU (Bean Zhang via RT)
Wed Jun 20 10:54:54 2018
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Bean Zhang via RT" <rt-comment@KRBDEV-PROD-APP-1.mit.edu>
In-Reply-To: <rt-8705@krbdev.mit.edu>
Message-ID: <rt-8705-48667.19.0391163109712@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #8705'":;
Date: Wed, 20 Jun 2018 10:54:47 -0400 (EDT)
Reply-To: rt-comment@KRBDEV-PROD-APP-1.mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
Hi Team,
In resolve_target_cache() of krb5-1.16.1/src/clients/ksu/main.c,
When calls get_configured_defccname(), will store the allocated memory to target,
later if calling gen_sym() fails, this function returns without freeing the memory target points to.
The fix is to call "goto cleanup" instead of "return retval".
Could someone help to take a look?
Thanks,
Bean
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs