[PATCH 07/22] autofs-5.1.4 - fix use after free in parse_ldap_config()

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Commit a4a2af5f30 (covarity fixes) incorrecly frees local variable
authtype after assigning it to a lookup context structure member.

Signed-off-by: Ian Kent <raven@xxxxxxxxxx>
---
 CHANGELOG             |    1 +
 modules/lookup_ldap.c |    2 --
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/CHANGELOG b/CHANGELOG
index 4765a66e..3bf86e84 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -36,6 +36,7 @@ xx/xx/2018 autofs-5.1.5
 - mark removed cache entry negative.
 - set bind mount as propagation slave.
 - add master map pseudo options for mount propagation.
+- fix use after free in parse_ldap_config().
 
 19/12/2017 autofs-5.1.4
 - fix spec file url.
diff --git a/modules/lookup_ldap.c b/modules/lookup_ldap.c
index 06c96973..911a34a5 100644
--- a/modules/lookup_ldap.c
+++ b/modules/lookup_ldap.c
@@ -1383,8 +1383,6 @@ auth_fail:
 		      user, secret ? "specified" : "unspecified",
 		      client_princ, client_cc);
 	}
-	if (authtype)
-		free(authtype);
 out:
 	xmlFreeDoc(doc);
 	if (auth_conf)




[Index of Archives]     [Linux Filesystem Development]     [Linux Ext4]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux