Skip Menu |

From: Bean Zhang <>
To: "" <>
Subject: Resource leak in get_best_princ_for_target()
Date: Wed, 20 Jun 2018 02:34:21 +0000
Hi Team,

In get_best_princ_for_target() of krb5-1.16.1/srcclients/ksu/heuristic.c,
When calling krb5_sname_to_principal() succeeds, will store the allocated memory to end_server,
later when this function returns, it does not free the memory end_server points to.

The fix is to call krb5_free_principal() to free end_server when this function returns.

Could someone help to take a look?