git.samba.org
/
metze
/
heimdal
/
wip.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
644b459
)
kadmind: fix pw leak from CVE-2016-2400 fix
author
Nicolas Williams
<nico@twosigma.com>
Tue, 1 Mar 2016 00:34:57 +0000
(18:34 -0600)
committer
Nicolas Williams
<nico@twosigma.com>
Tue, 1 Mar 2016 01:13:12 +0000
(19:13 -0600)
kadmin/server.c
patch
|
blob
|
history
diff --git
a/kadmin/server.c
b/kadmin/server.c
index 8237697969043a2024e03a41473f1c394e23c863..b339a9ac72343b94eb3756ae30e215a41db6bbcf 100644
(file)
--- a/
kadmin/server.c
+++ b/
kadmin/server.c
@@
-194,6
+194,8
@@
kadmind_dispatch(void *kadm_handlep, krb5_boolean initial,
ret = check_aliases(contextp, &ent, NULL);
if (ret) {
kadm5_free_principal_ent(kadm_handlep, &ent);
+ memset(password, 0, strlen(password));
+ free(password);
goto fail;
}
}