Hi,

 

If secret string is defined in radiusclient.conf like following:

 

acctserver           localhost:1646:mysecret

 

(and not in ‘servers’ file – which btw is better way because ‘servers’ file is rereaded for every request), it leaks, because serv->secret is never freed.

 

 

--

Best Regards,

Alex Massover

VoIP R&D TL

Jajah Inc.

 



This mail was sent via Mail-SeCure System.