[krbdev.mit.edu #6801] SVN Commit
Sam Hartman via RT
rt-comment at krbdev.mit.edu
Tue Oct 12 21:19:15 EDT 2010
In Debian Bug 598032, Bastian Blank points out that there are two
leaks in the get_init_creds interface:
* Free ctx->request->padata after sending the KDC request so it is not
overwritten the next time around the loop.
* If options is NULL passed into krb5_get_init_creds_init, then set up
a non-extended options structure so that krb5_get_init_creds_free will
free the options.
http://src.mit.edu/fisheye/changelog/krb5/?cs=24452
Commit By: hartmans
Revision: 24452
Changed Files:
U trunk/src/lib/krb5/krb/get_in_tkt.c
More information about the krb5-bugs
mailing list