Bug 1282488

Summary: Address memory leaks in server-side GSS authenticator
Product: Red Hat Enterprise Linux 7 Reporter: Steve Dickson <steved>
Component: libtirpcAssignee: Steve Dickson <steved>
Status: CLOSED ERRATA QA Contact: Murphy Zhou <xzhou>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 7.3CC: eguan, extras-qa, fs-qe, jlayton, steved
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: libtirpc-0.2.4-0.7.el7 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 1282463 Environment:
Last Closed: 2016-11-04 02:15:23 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1282463    
Bug Blocks:    

Description Steve Dickson 2015-11-16 15:19:29 UTC 
+++ This bug was initially created as a clone of Bug #1282463 +++

[ Its not clear whether RHEL7 needs these fixes but we should ]
[ take a look ]

Description of problem:

There are additional memory leaks observed in the _gss_authenticate
code path originating in libgssapi_krb5, which remain unaddressed.
These might not be libtirpc problems.


Needed upstream patches:


commit c301db9dfd3f58ee1a286c5d421eb82c0daa5187
Author: Chuck Lever <chuck.lever>
Date:   Mon Nov 16 08:11:21 2015 -0500

    Fix svcauth_gss_accept_sec_context() memory leaks

commit d50a71515feda22c251ee3be4fc56de685866105
Author: Chuck Lever <chuck.lever>
Date:   Mon Nov 16 08:10:04 2015 -0500

    Fix XDR result leak in _svcauth_gss()

commit 169318cc0c97c9b92cb1c875e54a82cc8c41717c
Author: Chuck Lever <chuck.lever>
Date:   Mon Nov 16 08:05:45 2015 -0500

    Fix checksum buffer leak

commit 49896c3068a0a2e87028a7391ac9bf4725e08375
Author: Chuck Lever <chuck.lever>
Date:   Mon Nov 16 08:03:46 2015 -0500

    Fix memory leak in svcauth_gss_import_name()

commit 8cf197b50243dee64ffb6c2da1d92179bee4f705
Author: Chuck Lever <chuck.lever>
Date:   Mon Nov 16 08:01:29 2015 -0500

    rpc_gss_set_svc_name() overwrites _svcauth_gss_creds
Comment 8 errata-xmlrpc 2016-11-04 02:15:23 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2016-2280.html