]> git.ipfire.org Git - thirdparty/krb5.git/commitdiff
projects / thirdparty / krb5.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: a2df94b)
Fix memory leak in KDC PKINIT code
authorsashan <anedvedicky@gmail.com>
Tue, 20 Feb 2018 22:03:36 +0000 (23:03 +0100)
committerGreg Hudson <ghudson@mit.edu>
Tue, 1 May 2018 20:53:14 +0000 (16:53 -0400)
Commit e5c77a11341a79e6af1e5aef7c587a5b75a9e378 introduced a memory
leak of the client public key in server_process_dh().  Free
client_pubkey on success as well as failure.

(cherry picked from commit cefc250efd71515dd665b606bcb993e617068758)

ticket: 8644
version_fixed: 1.15.3

src/plugins/preauth/pkinit/pkinit_crypto_openssl.c patch | blob | blame | history

diff --git a/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c b/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c
index 4b86a6f302ddc7a12d17eded25f0695b5a25dd21..8d565e2662aef6dc64d901eeba7b2f48f9222f71 100644 (file)
--- a/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c
+++ b/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c
@@ -2991,6 +2991,7 @@ server_process_dh(krb5_context context,
 
     retval = 0;
 
+    BN_free(client_pubkey);
     if (dh_server != NULL)
         DH_free(dh_server);
     return retval;
Mirror of https://github.com/krb5/krb5.git