X-RT-Original-Encoding: iso-8859-1
Content-Length: 549

The function kadm5_get_init_creds fails to release a principal before
exiting.  The leak can be observed by running "valgrind
--leak-check=full kadmin".  No actions are necessary; simply exit from
kadmin immediately and the leak is reported.  Valgrind actually reports
a leak in _kadm5_init_any on my Fedora Core 6 machine, but the line
number points to a spot in kadm5_get_init_creds.  I have inspected the
source code and verified that this leak exists in all 1.5 releases as
well as in the 1.6 release.  I am attaching a patch to plug the leak.