thr3ads.net - openssh bugs - [Bug 3244] New: ASAN found two memory leaks in sshd.c [Dec 2020]

If this information is useful, please help other people find it:
Share via:

bugzilla-daemon at mindrot.org

2020-Dec-16 08:54 UTC

[Bug 3244] New: ASAN found two memory leaks in sshd.c

https://bugzilla.mindrot.org/show_bug.cgi?id=3244

            Bug ID: 3244
           Summary: ASAN found two memory leaks in sshd.c
           Product: Portable OpenSSH
           Version: -current
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: sshd
          Assignee: unassigned-bugs at mindrot.org
          Reporter: filmil+mindrot at gmail.com

An ASAN build of openssh-portable found the following memory leaks in
sshd.c:

(1)
https://github.com/openssh/openssh-portable/blob/master/sshd.c#L249:
auth_opts is never freed.

(2)
https://github.com/openssh/openssh-portable/blob/master/sshd.c#L2363
compat_pkgalg_proposal yields ownership of the returned "char*", which
is never freed thereafter.

Not sure if y'all care about issues like these, so I wanted to check
first.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.

openssh bugs - Dec 2020 - [Bug 3244] New: ASAN found two memory leaks in sshd.c

[Bug 3244] New: ASAN found two memory leaks in sshd.c