thr3ads.net - openssh bugs - [Bug 2003] New: [mux.c] fix memory leaks when new session message is malformed [May 2012]

If this information is useful, please help other people find it:
Share via:

bugzilla-daemon at bugzilla.mindrot.org

2012-May-02 18:10 UTC

[Bug 2003] New: [mux.c] fix memory leaks when new session message is malformed

https://bugzilla.mindrot.org/show_bug.cgi?id=2003

             Bug #: 2003
           Summary: [mux.c] fix memory leaks when new session message is
                    malformed
    Classification: Unclassified
           Product: Portable OpenSSH
           Version: 6.0p1
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: critical
          Priority: P2
         Component: ssh
        AssignedTo: unassigned-bugs at mindrot.org
        ReportedBy: Bert.Wesarg at googlemail.com


Created attachment 2148
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2148
Patch fixing memory leak

The malf: exception block is also used when extracting the environments
for the new session, therefor we need also to free those if it fails.

Also free the context object in two cleanup blocks.

I set the severity to critical because this could be used to DOS the
muxserver by leaking memory in them.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.

openssh bugs - May 2012 - [Bug 2003] New: [mux.c] fix memory leaks when new session message is malformed

[Bug 2003] New: [mux.c] fix memory leaks when new session message is malformed