[krbdev.mit.edu #8696] Resource leak in krb5_425_conv_principal()
Bean Zhang via RT
rt-comment at KRBDEV-PROD-APP-1.mit.edu
Fri Jun 15 10:51:19 EDT 2018
Hi Team,
krb5_425_conv_principal() in krb5-1.16.1/src/lib/krb5/krb/conv_princ.c
calls profile_iterator(&iterator, &realm_name, &dummy_value) in a while loop,
later if break this while loop and run into "return retval", then the allocated memory
dummy_value points to will not be freed when leaves this function.
The fix is to call profile_release_string (dummy_value) before "return retval".
Could someone help to take a look?
Thanks,
Bean
More information about the krb5-bugs
mailing list