oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

gss: don't leak NTLM cred on failure

Browse Source 
Do not leak partially complete credential handle in _gss_ntlm_get_user_cred()
This commit is contained in:
Luke Howard
2021-08-02 17:09:09 +10:00
parent 73224fef5a
commit d672e49231
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
lib/gssapi/ntlm/init_sec_context.c
View File

@@ -206,7 +206,8 @@ _gss_ntlm_get_user_cred(const ntlm_name target_name,
ret = get_user_ccache(target_name,
&cred->domain, &cred->username, &cred->key);
if (ret) {
free(cred);
OM_uint32 tmp;
_gss_ntlm_release_cred(&tmp, (gss_cred_id_t *)&cred);
return ret;
}