From 79e4f68ad1bca5a1840c1aac0f3979d3ee1c76c9 Mon Sep 17 00:00:00 2001 From: Har Gagan Sahai Date: Thu, 3 Sep 2015 10:29:16 +0530 Subject: [PATCH] Fix memory leaks in kerberos credential cache and dns resolution during spnego authentication using kerberos. Signed-off-by: Har Gagan Sahai --- source4/heimdal/lib/krb5/mcache.c | 4 ++++ source4/heimdal/lib/roken/resolve.c | 1 + 2 files changed, 5 insertions(+) diff --git a/source4/heimdal/lib/krb5/mcache.c b/source4/heimdal/lib/krb5/mcache.c index e4b90c1..7a04b1a 100644 --- a/source4/heimdal/lib/krb5/mcache.c +++ b/source4/heimdal/lib/krb5/mcache.c @@ -163,6 +163,10 @@ mcc_initialize(krb5_context context, krb5_mcache *m = MCACHE(id); m->dead = 0; m->mtime = time(NULL); + if (m->primary_principal != NULL) { + krb5_free_principal (context, m->primary_principal); + m->primary_principal = NULL; + } return krb5_copy_principal (context, primary_principal, &m->primary_principal); diff --git a/source4/heimdal/lib/roken/resolve.c b/source4/heimdal/lib/roken/resolve.c index b27f37a..0cfe0b0 100644 --- a/source4/heimdal/lib/roken/resolve.c +++ b/source4/heimdal/lib/roken/resolve.c @@ -588,6 +588,7 @@ dns_lookup_int(const char *domain, int rr_class, int rr_type) len = min(len, size); r = parse_reply(reply, len); + resolve_free_handle(handle); free(reply); return r; } -- 1.8.4.5