[krbdev.mit.edu #8439] git commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Fri Sep 2 17:04:23 EDT 2016
Fix leak in gss_display_name() for non-MN names
RFC 2744 states that the gss_display_name() output_name_type result is
"a pointer into static storage, and should be treated as read-only by
the caller (in particular, the application should not attempt to free
it)". For non-mechanism names, we were making a copy of the name type
from the union name structure, causing a memory leak; stop doing that.
(cherry picked from commit 20fcbf2cb820df0d31e66bb11f64fb50a31008f5)
https://github.com/krb5/krb5/commit/c756cd64a3eac898ac742ee2d834bdf7357fd6eb
Author: Greg Hudson <ghudson at mit.edu>
Committer: Tom Yu <tlyu at mit.edu>
Commit: c756cd64a3eac898ac742ee2d834bdf7357fd6eb
Branch: krb5-1.14
src/lib/gssapi/mechglue/g_dsp_name.c | 27 ++++-----------------------
1 files changed, 4 insertions(+), 23 deletions(-)
More information about the krb5-bugs
mailing list