fix MITKRB5-SA-2004-002

Fix double-free vulnerabilities [MITKRB5-SA-2004-002]. ticket: new target_version: 1.3.5 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16701 dc483132-0cff-0310-8789-dd5450dbe970
author: Tom Yu <tlyu@mit.edu> 2004-08-31 18:52:26 +0000
committer: Tom Yu <tlyu@mit.edu> 2004-08-31 18:52:26 +0000
commit: a37f039625cc1ddf5c66fa43e3534ded461337d3 (patch)
tree: 2d8298ce7166730488ebf623d2b26483f7647b68 /src/lib/krb5/krb/rd_rep.c
parent: fc0bb2cb9d3a64a34865adbc0f985bc1cfa323fe (diff)
download: krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.zip
krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.tar.gz
krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.tar.bz2
1 files changed, 2 insertions, 0 deletions
diff --git a/src/lib/krb5/krb/rd_rep.c b/src/lib/krb5/krb/rd_rep.c
index 8019229..6742d8a 100644
--- a/src/lib/krb5/krb/rd_rep.c
+++ b/src/lib/krb5/krb/rd_rep.c
@@ -71,6 +71,8 @@ krb5_rd_rep(krb5_context context, krb5_auth_context auth_context, const krb5_dat
 
     /* now decode the decrypted stuff */
     retval = decode_krb5_ap_rep_enc_part(&scratch, repl);
+    if (retval)
+	goto clean_scratch;
 
     /* Check reply fields */
     if (((*repl)->ctime != auth_context->authentp->ctime) ||
author	Tom Yu <tlyu@mit.edu>	2004-08-31 18:52:26 +0000
committer	Tom Yu <tlyu@mit.edu>	2004-08-31 18:52:26 +0000
commit	a37f039625cc1ddf5c66fa43e3534ded461337d3 (patch)
tree	2d8298ce7166730488ebf623d2b26483f7647b68 /src/lib/krb5/krb/rd_rep.c
parent	fc0bb2cb9d3a64a34865adbc0f985bc1cfa323fe (diff)
download	krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.zip krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.tar.gz krb5-a37f039625cc1ddf5c66fa43e3534ded461337d3.tar.bz2