diff options
author | Greg Hudson <ghudson@mit.edu> | 2016-06-28 21:38:57 -0400 |
---|---|---|
committer | Tom Yu <tlyu@mit.edu> | 2016-09-02 18:30:08 -0400 |
commit | 165c99c8df06795f5c7a3a2866452a6a996f1ab7 (patch) | |
tree | d6e7cace904e950f710587f14cf416b029ceab50 | |
parent | ac12d2cd083484cbb125f956d57609e9a5f3174e (diff) | |
download | krb5-165c99c8df06795f5c7a3a2866452a6a996f1ab7.zip krb5-165c99c8df06795f5c7a3a2866452a6a996f1ab7.tar.gz krb5-165c99c8df06795f5c7a3a2866452a6a996f1ab7.tar.bz2 |
Fix leak in FAST OTP client processing
In set_pa_data(), after encoding the OTP request and stealing the
pointer from the resulting krb5_data object, free the krb5_data
container.
(cherry picked from commit 7029efc11525299b87b9024280ef1d9f82059ec5)
ticket: 8443
version_fixed: 1.13.7
-rw-r--r-- | src/lib/krb5/krb/preauth_otp.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/lib/krb5/krb/preauth_otp.c b/src/lib/krb5/krb/preauth_otp.c index 3de528b..37f98b2 100644 --- a/src/lib/krb5/krb/preauth_otp.c +++ b/src/lib/krb5/krb/preauth_otp.c @@ -830,6 +830,7 @@ set_pa_data(const krb5_pa_otp_req *req, krb5_pa_data ***pa_data_out) goto error; out[0]->contents = (krb5_octet *)tmp->data; out[0]->length = tmp->length; + free(tmp); *pa_data_out = out; return 0; |