[krbdev.mit.edu #8698] Resource leak in aname_replacer()
Bean Zhang via RT
rt-comment at KRBDEV-PROD-APP-1.mit.edu
Fri Jun 15 10:51:20 EDT 2018
Hi Team,
aname_replacer() in krb5-1.16.1/src/lib/krb5/os/localauth_rule.c
assigns a allocated memory by calling strdup() to pointer current,
later if runs into any "goto cleanup", the allocated momory
"current" points to will not be freed when leaves this function.
The fix is to call free(current) before "goto cleanup".
Could someone help to take a look?
Thanks,
Bean
More information about the krb5-bugs
mailing list