1From 078f98ea154475d953ce5b7cd851732f4dc270a7 Mon Sep 17 00:00:00 2001 2From: Hitendra Prajapati <hprajapati@mvista.com> 3Date: Tue, 5 Jul 2022 09:31:07 +0530 4Subject: [PATCH] CVE-2022-24407 5 6Upstream-Status: Backport [https://github.com/cyrusimap/cyrus-sasl/commit/9eff746c9daecbcc0041b09a5a51ba30738cdcbc] 7CVE: CVE-2022-24407 8Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> 9--- 10 plugins/sql.c | 1 + 11 1 file changed, 1 insertion(+) 12 13diff --git a/plugins/sql.c b/plugins/sql.c 14index 6ac81c2f..d90dbac9 100644 15--- a/plugins/sql.c 16+++ b/plugins/sql.c 17@@ -1127,6 +1127,7 @@ static int sql_auxprop_lookup(void *glob_context, 18 done: 19 if (escap_userid) sparams->utils->free(escap_userid); 20 if (escap_realm) sparams->utils->free(escap_realm); 21+ if (escap_passwd) sparams->utils->free(escap_passwd); 22 if (conn) settings->sql_engine->sql_close(conn); 23 if (userid) sparams->utils->free(userid); 24 if (realm) sparams->utils->free(realm); 25-- 262.25.1 27 28