[krbdev.mit.edu #8647] git commit
Greg Hudson via RT
rt-comment at KRBDEV-PROD-APP-1.mit.edu
Tue Mar 27 15:15:26 EDT 2018
Fix SPAKE memory leak
In the NIST group implementations, ossl_fini() needs to free the
groupdata container as well as its fields. Also in
spake_kdc.c:parse_data(), initialize the magic field of the resulting
data object to avoid a harmless uninitialized memory copy.
https://github.com/krb5/krb5/commit/91dad4eba37b5b56dc21d59880cb6eb4d3e6b7a5
Author: Greg Hudson <ghudson at mit.edu>
Commit: 91dad4eba37b5b56dc21d59880cb6eb4d3e6b7a5
Branch: master
src/plugins/preauth/spake/openssl.c | 1 +
src/plugins/preauth/spake/spake_kdc.c | 1 +
2 files changed, 2 insertions(+), 0 deletions(-)
More information about the krb5-bugs
mailing list