Potential memory leak in sshd [detected by melton]

Ángel González keisial at gmail.com
Mon Feb 6 08:11:34 EST 2012

On 05/02/12 21:51, Ángel González wrote:
> The second leak
> Logic error 	Memory leak 	session.i 	13193 	13 	View Report
> <http://lcs.ios.ac.cn/%7Exuzb/bugsfound/memleak/openssh-5.9p1/realbugs/sshd/report-zSMfqI.html#EndPath>
> http://lcs.ios.ac.cn/~xuzb/bugsfound/memleak/openssh-5.9p1/realbugs/sshd/report-zSMfqI.html#EndPath
> is a false positive.
> The only way to exit the infinite loop is the return of line 13267.
> And line 13266 calls session_close(), which frees s->auth_data in line
> 14994.

The fifth one is a duplicate of this (same path, but the variable
allocated on next line).
12th one is the same issue of freeing at session_close not detected. But
this time with s->auth_display

More information about the openssh-unix-dev mailing list