Skip Menu |
 

From: Bean Zhang <bean.zhang@centrify.com>
To: "krb5-bugs@mit.edu" <krb5-bugs@mit.edu>
Subject: Resource leak in krb5_425_conv_principal()
Date: Fri, 15 Jun 2018 09:01:54 +0000
Hi Team,

krb5_425_conv_principal() in krb5-1.16.1/src/lib/krb5/krb/conv_princ.c
calls profile_iterator(&iterator, &realm_name, &dummy_value) in a while loop,
later if break this while loop and run into "return retval", then the allocated memory
dummy_value points to will not be freed when leaves this function.

The fix is to call profile_release_string (dummy_value) before "return retval".

Could someone help to take a look?

Thanks,
Bean
Fixed in commit 971c5213f7c501d3943bc0ff8db918f1616aa35a which also
fixed ticket 8695.