diff options
| author | Tom Yu <tlyu@mit.edu> | 2007-06-18 21:07:37 +0000 |
|---|---|---|
| committer | Tom Yu <tlyu@mit.edu> | 2007-06-18 21:07:37 +0000 |
| commit | 073cf9a9bcbe0f194990fcf199bad688f161a6c7 (patch) | |
| tree | eff9cac4e645de6d0ce2c6d2cf6420a781094965 /src | |
| parent | b7895cf55e58fe12f7b33dcf8558daaff316df5e (diff) | |
| download | krb5-073cf9a9bcbe0f194990fcf199bad688f161a6c7.tar.gz krb5-073cf9a9bcbe0f194990fcf199bad688f161a6c7.tar.xz krb5-073cf9a9bcbe0f194990fcf199bad688f161a6c7.zip | |
krb5_walk_realm_tree leaks in capaths case
Markus Moeller reports a leak in krb5_get_credentials() which was then
traced down to profile strings leaking from within
krb5_walk_realm_tree(). A pointer to a profile string was getting
overwritten without the string being freed when *cap_nodes[0] == '.'.
Fix is to free the string prior to overwriting the pointer if the
pointer is non-null.
ticket: new
target_version: 1.6.2
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19582 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src')
| -rw-r--r-- | src/lib/krb5/krb/walk_rtree.c | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/src/lib/krb5/krb/walk_rtree.c b/src/lib/krb5/krb/walk_rtree.c index 7210be7c71..c4673caa8c 100644 --- a/src/lib/krb5/krb/walk_rtree.c +++ b/src/lib/krb5/krb/walk_rtree.c @@ -167,6 +167,9 @@ krb5_walk_realm_tree(krb5_context context, const krb5_data *client, const krb5_d links++; } } + if (cap_nodes[links] != NULL) + krb5_xfree(cap_nodes[links]); + cap_nodes[links] = cap_server; /* put server on end of list */ /* this simplifies the code later and make */ /* cleanup eaiser as well */ |