IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

covscan: free ucs2-encoded password copy when generating NTLM hash

Browse Source 
On successful code path we leak internal copy of the ucs2-encoded
password.

Fixes: https://pagure.io/freeipa/issue/8131
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
Reviewed-By: Florence Blanc-Renaud <frenaud@redhat.com>
This commit is contained in:
Alexander Bokovoy
2019-11-28 17:50:18 +02:00
committed by Christian Heimes
parent e3ad78538e
commit e9dd757763
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
util/ipa_pwd_ntlm.c
View File

@@ -103,6 +103,7 @@ int encode_nt_key(char *newPasswd, uint8_t *nt_key)
} }
ret = 0; ret = 0;
free(ucs2Passwd);
done: done:
return ret; return ret;