From b1d2c0b914796e391fc2857c5ea4c785fcb05f65 Mon Sep 17 00:00:00 2001 From: Steve Dickson Date: Tue, 19 Mar 2024 16:02:34 -0400 Subject: [PATCH] rpcb_clnt.c (fixed): Eliminate double frees in delete_cache() (RHEL-11293) Signed-off-by: Steve Dickson Resolves: RHEL-11293 Resolves: RHEL-11370 --- ...rpc-1.1.4-null-ptrs-not-reused-fixed.patch | 23 +++++++++++++++++++ libtirpc.spec | 6 ++++- 2 files changed, 28 insertions(+), 1 deletion(-) create mode 100644 libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch diff --git a/libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch b/libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch new file mode 100644 index 0000000..80b5a2c --- /dev/null +++ b/libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch @@ -0,0 +1,23 @@ +commit 6951a9c3139c9c7dbb0bdae70737996011fc7a37 +Author: Herb Wartens +Date: Mon Mar 18 11:07:15 2024 -0400 + + rpcb_clnt.c: memory leak in destroy_addr + + Piece was dropped from original fix. + + Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=2225226 + Signed-off-by: Steve Dickson + +diff --git a/src/rpcb_clnt.c b/src/rpcb_clnt.c +index 68fe69a..d909efc 100644 +--- a/src/rpcb_clnt.c ++++ b/src/rpcb_clnt.c +@@ -121,6 +121,7 @@ destroy_addr(addr) + free(addr->ac_taddr->buf); + addr->ac_taddr->buf = NULL; + } ++ free(addr->ac_taddr); + addr->ac_taddr = NULL; + } + free(addr); diff --git a/libtirpc.spec b/libtirpc.spec index 0c1c586..70ee635 100644 --- a/libtirpc.spec +++ b/libtirpc.spec @@ -2,7 +2,7 @@ Name: libtirpc Version: 1.1.4 -Release: 10%{?dist} +Release: 11%{?dist} Summary: Transport Independent RPC Library Group: System Environment/Libraries License: SISSL and BSD @@ -52,6 +52,7 @@ Patch009: libtirpc-1.1.4-multithr-cleanup.patch # Patch010: libtirpc-1.1.4-null-ptrs-not-reused.patch Patch011: libtirpc-1.1.4-double-free.patch +Patch012: libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch BuildRequires: automake, autoconf, libtool, pkgconfig BuildRequires: krb5-devel @@ -172,6 +173,9 @@ mv %{buildroot}%{_mandir}/man3 %{buildroot}%{_mandir}/man3t %{_mandir}/*/* %changelog +* Tue Mar 19 2024 Steve Dickson 1.1.4-11 +- rpcb_clnt.c (fixed): Eliminate double frees in delete_cache() (RHEL-11293) + * Tue Mar 5 2024 Steve Dickson 1.1.4-10 - rpcb_clnt.c: Eliminate double frees in delete_cache() (RHEL-11293)