fix MITKRB5-SA-2004-002

Fix double-free vulnerabilities [MITKRB5-SA-2004-002]. ticket: new target_version: 1.3.5 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16701 dc483132-0cff-0310-8789-dd5450dbe970
author: Tom Yu <tlyu@mit.edu> 2004-08-31 18:52:26 +0000
committer: Tom Yu <tlyu@mit.edu> 2004-08-31 18:52:26 +0000
commit: a37f039625cc1ddf5c66fa43e3534ded461337d3 (patch)
tree: 2d8298ce7166730488ebf623d2b26483f7647b68 /src/krb524
parent: fc0bb2cb9d3a64a34865adbc0f985bc1cfa323fe (diff)
download: krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.tar.gz
krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.tar.xz
krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.zip
2 files changed, 7 insertions, 1 deletions
diff --git a/src/krb524/ChangeLog b/src/krb524/ChangeLog
index f7601ff834..e36bff9043 100644
--- a/src/krb524/ChangeLog
+++ b/src/krb524/ChangeLog
@@ -1,3 +1,7 @@
+2004-08-31  Tom Yu  <tlyu@mit.edu>
+
+	* krb524d.c: Fix double-free vulnerabilities.
+
 2004-08-08  Ken Raeburn  <raeburn@mit.edu>
 
 	* krb524d.c (do_connection): Use socklen_t for the size of the
diff --git a/src/krb524/krb524d.c b/src/krb524/krb524d.c
index ba9be957f8..5b3641bcc2 100644
--- a/src/krb524/krb524d.c
+++ b/src/krb524/krb524d.c
@@ -583,8 +583,10 @@ ret =  KRB5KDC_ERR_POLICY ;
 	  printf("v4 credentials encoded\n");
 
  error:
-     if (v5tkt->enc_part2)
+     if (v5tkt->enc_part2) {
 	 krb5_free_enc_tkt_part(context, v5tkt->enc_part2);
+	 v5tkt->enc_part2 = NULL;
+     }
 
      if(v5_service_key.contents)
        krb5_free_keyblock_contents(context, &v5_service_key);
author	Tom Yu <tlyu@mit.edu>	2004-08-31 18:52:26 +0000
committer	Tom Yu <tlyu@mit.edu>	2004-08-31 18:52:26 +0000
commit	a37f039625cc1ddf5c66fa43e3534ded461337d3 (patch)
tree	2d8298ce7166730488ebf623d2b26483f7647b68 /src/krb524
parent	fc0bb2cb9d3a64a34865adbc0f985bc1cfa323fe (diff)
download	krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.tar.gz krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.tar.xz krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.zip