openldap-2.4.23-16.el6 is also affected
Rich's patch was already included upstream.
+++ This bug was initially created as a clone of Bug #725818 +++
Description of problem:
Resolved in openldap-2.4.23-17.el6
Technical note added. If any revisions are required, please edit the "Technical Notes" field
accordingly. All revisions will be proofread by the Engineering Content Services team.
- All tools using OpenLDAP library and using TLS to connect to the server, while the library fails to verify certificate or key.
- Memory leak appears in tlsm_find_and_verify_cert_key.
- The patch was applied to correctly dispose verified certificate or key when it's verification fails.
- No more memory leaks when OpenLDAP library fails to verify a certificate or a key.
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.