From b1d2c0b914796e391fc2857c5ea4c785fcb05f65 Mon Sep 17 00:00:00 2001
From: Steve Dickson <steved@redhat.com>
Date: Tue, 19 Mar 2024 16:02:34 -0400
Subject: [PATCH] rpcb_clnt.c (fixed): Eliminate double frees in delete_cache()
 (RHEL-11293)

Signed-off-by: Steve Dickson <steved@redhat.com>
Resolves: RHEL-11293
Resolves: RHEL-11370
---
 ...rpc-1.1.4-null-ptrs-not-reused-fixed.patch | 23 +++++++++++++++++++
 libtirpc.spec                                 |  6 ++++-
 2 files changed, 28 insertions(+), 1 deletion(-)
 create mode 100644 libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch

diff --git a/libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch b/libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch
new file mode 100644
index 0000000..80b5a2c
--- /dev/null
+++ b/libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch
@@ -0,0 +1,23 @@
+commit 6951a9c3139c9c7dbb0bdae70737996011fc7a37
+Author: Herb Wartens <wartens2@llnl.gov>
+Date:   Mon Mar 18 11:07:15 2024 -0400
+
+    rpcb_clnt.c: memory leak in destroy_addr
+    
+    Piece was dropped from original fix.
+    
+    Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=2225226
+    Signed-off-by: Steve Dickson <steved@redhat.com>
+
+diff --git a/src/rpcb_clnt.c b/src/rpcb_clnt.c
+index 68fe69a..d909efc 100644
+--- a/src/rpcb_clnt.c
++++ b/src/rpcb_clnt.c
+@@ -121,6 +121,7 @@ destroy_addr(addr)
+ 			free(addr->ac_taddr->buf);
+ 			addr->ac_taddr->buf = NULL;
+ 		}
++		free(addr->ac_taddr);
+ 		addr->ac_taddr = NULL;
+ 	}
+ 	free(addr);
diff --git a/libtirpc.spec b/libtirpc.spec
index 0c1c586..70ee635 100644
--- a/libtirpc.spec
+++ b/libtirpc.spec
@@ -2,7 +2,7 @@
 
 Name:			libtirpc
 Version:		1.1.4
-Release:		10%{?dist}
+Release:		11%{?dist}
 Summary:		Transport Independent RPC Library
 Group:		  	System Environment/Libraries
 License:		SISSL and BSD
@@ -52,6 +52,7 @@ Patch009: libtirpc-1.1.4-multithr-cleanup.patch
 #
 Patch010: libtirpc-1.1.4-null-ptrs-not-reused.patch
 Patch011: libtirpc-1.1.4-double-free.patch
+Patch012: libtirpc-1.1.4-null-ptrs-not-reused-fixed.patch
 
 BuildRequires:		automake, autoconf, libtool, pkgconfig
 BuildRequires:		krb5-devel
@@ -172,6 +173,9 @@ mv %{buildroot}%{_mandir}/man3 %{buildroot}%{_mandir}/man3t
 %{_mandir}/*/*
 
 %changelog
+* Tue Mar 19 2024 Steve Dickson <steved@redhat.com> 1.1.4-11
+- rpcb_clnt.c (fixed): Eliminate double frees in delete_cache() (RHEL-11293)
+
 * Tue Mar  5 2024 Steve Dickson <steved@redhat.com> 1.1.4-10
 - rpcb_clnt.c: Eliminate double frees in delete_cache() (RHEL-11293)