[STABLE-BRANCH-1-4 PATCH] g10: secmem leak

Daniel Kahn Gillmor dkg at fifthhorseman.net
Wed Apr 26 03:17:38 CEST 2017


On Fri 2017-02-17 02:52:47 -0500, Ineiev wrote:
> On Thu, Apr 14, 2016 at 07:43:22PM +0200, Werner Koch wrote:
>> On Thu, 14 Apr 2016 18:18, ineiev at gnu.org said:
>> 
>> > I attach a patch for GnuPG-bug 1371. in short, secure memory
>> > is leaked because proc_parameter_file() adds new entries
>> > to the head of the list of parameters, and these entries
>> > aren't accessible to the caller that releases the list.
>> 
>> Thanks for the patch - I will look at it later.
>
> It still applies.

I've just pushed it to a git branch dkg/T1371, and linked to it from the
phabricator issue:

 https://dev.gnupg.org/T1371

     --dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
URL: </pipermail/attachments/20170425/f03b2bbf/attachment.sig>


More information about the Gnupg-devel mailing list