apply_cmndspec: plug potential memory leak

If apply_cmndspec() is called where the cmndspec defines an apparmor profile or Solaris privileges, and then is called again with a cmndspec that does not have those set we would leak the original value.
sudo-project · May 6, 2024 · f2a979f · f2a979f
1 parent 43ffe34
commit f2a979f
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/plugins/sudoers/lookup.c b/plugins/sudoers/lookup.c
@@ -367,6 +367,7 @@ apply_cmndspec(struct sudoers_context *ctx, struct cmndspec *cs)
 		debug_return_bool(false);
 	    }
 	} else {
+	    free(ctx->runas.apparmor_profile);
 	    ctx->runas.apparmor_profile = def_apparmor_profile;
 	    def_apparmor_profile = NULL;
 	}
@@ -384,6 +385,7 @@ apply_cmndspec(struct sudoers_context *ctx, struct cmndspec *cs)
 		debug_return_bool(false);
 	    }
 	} else {
+	    free(ctx->runas.privs);
 	    ctx->runas.privs = def_privs;
 	    def_privs = NULL;
 	}
@@ -400,6 +402,7 @@ apply_cmndspec(struct sudoers_context *ctx, struct cmndspec *cs)
 		debug_return_bool(false);
 	    }
 	} else {
+	    free(ctx->runas.limitprivs);
 	    ctx->runas.limitprivs = def_limitprivs;
 	    def_limitprivs = NULL;
 	}