From e63722fed48ae91ce577f2dc8196a37ae9aea6ba Mon Sep 17 00:00:00 2001 From: William Lallemand Date: Sat, 21 Feb 2026 16:03:17 +0100 Subject: [PATCH] BUG/MINOR: acme: acme_ctx_destroy() leaks auth->dns 365a696 ("MINOR: acme: emit a log for DNS-01 challenge response") introduces the auth->dns member which is istdup(). But this member is never free, instead auth->token was freed twice by mistake. Must be backported to 3.2. --- src/acme.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/acme.c b/src/acme.c index 28cdd076c..437e61068 100644 --- a/src/acme.c +++ b/src/acme.c @@ -878,7 +878,7 @@ static void acme_ctx_destroy(struct acme_ctx *ctx) istfree(&auth->auth); istfree(&auth->chall); istfree(&auth->token); - istfree(&auth->token); + istfree(&auth->dns); next = auth->next; free(auth); auth = next; -- 2.47.3