Subject: | Memory leak in krb5_get_init_creds() |
There is a memory leak in function krb5_get_init_creds() (lib/krb5/krb/get_in_tkt.c
The function calls krb5_libdefaults_string() at two places and forgets to free the returned
string tempstr. It frees the string only when the call to kr5_string_to_deltat() fails and the
function is going to return error. When the conversion is successful, memory is leaked.
Found when using the Kerberos.framework on Mac OS X 10.4.2 and checking our application
with the "leaks" utility. Version 1.4 is used there.
Attached is a patch to file get_in_tkt.c
The function calls krb5_libdefaults_string() at two places and forgets to free the returned
string tempstr. It frees the string only when the call to kr5_string_to_deltat() fails and the
function is going to return error. When the conversion is successful, memory is leaked.
Found when using the Kerberos.framework on Mac OS X 10.4.2 and checking our application
with the "leaks" utility. Version 1.4 is used there.
Attached is a patch to file get_in_tkt.c
Message body not shown because it is not plain text.