krb5int_rd_chpw_rep could call krb5_free_error with random value

clang picked up on a path in which krberror is not set and passed as an argument to krb5_free_error(). Essentially if the clearresult length < 2 but everything decodes - you can hit this path... ticket: 6511 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22409 dc483132-0cff-0310-8789-dd5450dbe970
author: Ezra Peisach <epeisach@mit.edu> 2009-06-10 02:55:22 +0000
committer: Ezra Peisach <epeisach@mit.edu> 2009-06-10 02:55:22 +0000
commit: ccdee10e6b9c218f3e82e5987d716bfb7cbb1c90 (patch)
tree: 777571d2561137f9347503f6d8b9d092f33d4cd5 /src/lib
parent: eccdec28c55702b7605af72e3eb553f7fd0bcecc (diff)
download: krb5-ccdee10e6b9c218f3e82e5987d716bfb7cbb1c90.tar.gz
krb5-ccdee10e6b9c218f3e82e5987d716bfb7cbb1c90.tar.xz
krb5-ccdee10e6b9c218f3e82e5987d716bfb7cbb1c90.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/lib/krb5/krb/chpw.c b/src/lib/krb5/krb/chpw.c
index 1a4013dd7..d38a7ef39 100644
--- a/src/lib/krb5/krb/chpw.c
+++ b/src/lib/krb5/krb/chpw.c
@@ -83,7 +83,7 @@ krb5int_rd_chpw_rep(krb5_context context, krb5_auth_context auth_context,
     krb5_error_code ret;
     krb5_data cipherresult;
     krb5_data clearresult;
-    krb5_error *krberror;
+    krb5_error *krberror = NULL;
     krb5_replay_data replay;
     krb5_keyblock *tmp;
author	Ezra Peisach <epeisach@mit.edu>	2009-06-10 02:55:22 +0000
committer	Ezra Peisach <epeisach@mit.edu>	2009-06-10 02:55:22 +0000
commit	ccdee10e6b9c218f3e82e5987d716bfb7cbb1c90 (patch)
tree	777571d2561137f9347503f6d8b9d092f33d4cd5 /src/lib
parent	eccdec28c55702b7605af72e3eb553f7fd0bcecc (diff)
download	krb5-ccdee10e6b9c218f3e82e5987d716bfb7cbb1c90.tar.gz krb5-ccdee10e6b9c218f3e82e5987d716bfb7cbb1c90.tar.xz krb5-ccdee10e6b9c218f3e82e5987d716bfb7cbb1c90.zip