diff options
| author | sashan <anedvedicky@gmail.com> | 2022-05-26 08:51:10 +0200 |
|---|---|---|
| committer | Greg Hudson <ghudson@mit.edu> | 2022-11-04 12:25:58 -0400 |
| commit | a7a99db31c532c5616814853354a048fc865df06 (patch) | |
| tree | 6d7a94cadbec08080d2194c199cbb079ab96ff40 | |
| parent | 0d52c072a57ae5ddd98090e8a1f6ce0a61efe5d6 (diff) | |
| download | krb5-a7a99db31c532c5616814853354a048fc865df06.tar.gz | |
Fix memory leak in SPAKE kdcpreauth module
Commit ff57dc682a27bd205d715f3c0bed84890f2453c4 introduced a memory
leak into verify_response(). reply_key is no longer passed to the
callback and therefore needs to be freed by this function.
[ghudson@mit.edu: rewrote commit message]
(cherry picked from commit 445e1b32767af3041ffd1823996d05ffec6fc9d5)
ticket: 9061
version_fixed: 1.20.1
| -rw-r--r-- | src/plugins/preauth/spake/spake_kdc.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/plugins/preauth/spake/spake_kdc.c b/src/plugins/preauth/spake/spake_kdc.c index 687cdc9e0..1a772d450 100644 --- a/src/plugins/preauth/spake/spake_kdc.c +++ b/src/plugins/preauth/spake/spake_kdc.c @@ -469,6 +469,7 @@ cleanup: zapfree(spakeresult.data, spakeresult.length); krb5_free_data_contents(context, &thash); krb5_free_keyblock(context, k1); + krb5_free_keyblock(context, reply_key); k5_free_spake_factor(context, factor); (*respond)(arg, ret, NULL, NULL, NULL); } |