[krbdev.mit.edu #6002] krb5_rc_io_creat should use mkstemp
Tom Yu via RT
rt-comment at krbdev.mit.edu
Fri Jul 25 15:54:49 EDT 2008
"Ken Raeburn via RT" <rt-comment at krbdev.mit.edu> writes:
>> Revision: 20543
>> U trunk/src/lib/krb5/rcache/rc_io.c
>
> It looks to me like, if strdup fails, the file is left open (which
> is probably okay if the caller then uses krb5_rc_close to dispose of
> the handle, but may cause a file and file descriptor leak if the
> caller tries krb5_rc_io_creat again), and d->fn is a dangling
> pointer (which could be freed again by krb5_rc_io_close).
That looks like a pre-existing bug. You could open a new ticket for it.
More information about the krb5-bugs
mailing list