[krbdev.mit.edu #8699] Resource leak in k5_os_hostaddr()
Bean Zhang via RT
rt-comment at KRBDEV-PROD-APP-1.mit.edu
Fri Jun 15 10:51:20 EDT 2018
Hi Team,
k5_os_hostaddr() in krb5-1.16.1/src/lib/krb5/os/hostaddr.c
calls getaddrinfo(name, 0, &hints, &ai) to get the addr info and store allocated memory to pointer "ai"
later if fails to call malloc((i+1) * sizeof(*addrs)), function directly return without freeing the storage ai points to.
The fix is to call "retval = ENOMEM; goto errout;" instead of "return ENOMEM;"
Could someone help to take a look?
Thanks,
Bean
More information about the krb5-bugs
mailing list