From: | Bean Zhang <bean.zhang@centrify.com> |
To: | "krb5-bugs@mit.edu" <krb5-bugs@mit.edu> |
Subject: | Resource leak in krb5_gss_inquire_cred() |
Date: | Fri, 15 Jun 2018 08:18:10 +0000 |
Hi Team,
krb5_gss_inquire_cred() in krb5-1.16.1/src/lib/gssapi/krb5/inq_cred.c
calls generic_gss_create_empty_oid_set() to create a empty oid set and store allocated memory to pointer "mechs"
but later if the code run into "goto fail", the storage mechs points to will not be freed when leaves this function.
The fix is to call gssalloc_free(mechs) in fail label.
Could someone help to take a look?
Thanks,
Bean