- fix use after free in parse_ldap_config() (bug 1617987).

2018-08-17 09:27:04 +08:00 · 2018-08-17 09:27:04 +08:00 · 772e02a636
commit 772e02a636
parent 6fa37fa28d
2 changed files with 40 additions and 1 deletions
--- a/autofs-5.1.4-fix-use-after-free-in-parse_ldap_config.patch
+++ b/autofs-5.1.4-fix-use-after-free-in-parse_ldap_config.patch
@ -0,0 +1,34 @@
+autofs-5.1.4 - fix use after free in parse_ldap_config()
+
+From: Ian Kent <raven@themaw.net>
+
+Commit a4a2af5f30 (covarity fixes) incorrecly frees local variable
+authtype after assigning it to a lookup context structure member.
+
+Signed-off-by: Ian Kent <raven@themaw.net>
+---
+ CHANGELOG             |    1 +
+ modules/lookup_ldap.c |    2 --
+ 2 files changed, 1 insertion(+), 2 deletions(-)
+
+--- autofs-5.1.4.orig/CHANGELOG
+++ autofs-5.1.4/CHANGELOG
+@@ -32,6 +32,7 @@ xx/xx/2018 autofs-5.1.5
+ - fix age setting at startup.
+ - fix update_negative_cache() map source usage.
+ - fix program usage message.
+- fix use after free in parse_ldap_config().
+ 
+ 19/12/2017 autofs-5.1.4
+ - fix spec file url.
+--- autofs-5.1.4.orig/modules/lookup_ldap.c
+++ autofs-5.1.4/modules/lookup_ldap.c
+@@ -1383,8 +1383,6 @@ auth_fail:
+ 		      user, secret ? "specified" : "unspecified",
+ 		      client_princ, client_cc);
+ 	}
+-	if (authtype)
+-		free(authtype);
+ out:
+ 	xmlFreeDoc(doc);
+ 	if (auth_conf)
--- a/autofs.spec
+++ b/autofs.spec
@ -8,7 +8,7 @@
 Summary: A tool for automatically mounting and unmounting filesystems
 Name: autofs
 Version: 5.1.4
-Release: 20%{?dist}
+Release: 21%{?dist}
 Epoch: 1
 License: GPLv2+
 Group: System Environment/Daemons
@ -47,6 +47,7 @@ Patch31: autofs-5.1.4-make-umount_ent-recognise-forced-umount.patch
 Patch32: autofs-5.1.4-fix-age-setting-at-startup.patch
 Patch33: autofs-5.1.4-fix-update_negative_cache-map-source-usage.patch
 Patch34: autofs-5.1.4-fix-program-usage-message.patch
+Patch35: autofs-5.1.4-fix-use-after-free-in-parse_ldap_config.patch

 %if %{with_systemd}
 BuildRequires: systemd-units
@ -141,6 +142,7 @@ echo %{version}-%{release} > .version
 %patch32 -p1
 %patch33 -p1
 %patch34 -p1
+%patch35 -p1

 %build
 LDFLAGS=-Wl,-z,now
@ -235,6 +237,9 @@ fi
 %dir /etc/auto.master.d

 %changelog
+* Fri Aug 17 2018 Ian Kent <ikent@redhat.com> - 1:5.1.4-21
+- fix use after free in parse_ldap_config().
+
 * Mon Aug 06 2018 Ian Kent <ikent@redhat.com> - 1:5.1.4-20
 - fix update_negative_cache() map source usage.
 - fix program usage message.