From 4f3889ae74302cb29d255099f93071a4573eec75 Mon Sep 17 00:00:00 2001
From: Har Gagan Sahai <SHarGagan@novell.com>
Date: Fri, 28 Aug 2015 18:14:13 +0530
Subject: [PATCH] Fix memory leaks in kerberos credential cache and dns
 resolution during spnego authentication using kerberos.

Signed-off-by: Har Gagan Sahai <SHarGagan@novell.com>
---
 source3/libads/kerberos.c           | 2 +-
 source4/heimdal/lib/roken/resolve.c | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/source3/libads/kerberos.c b/source3/libads/kerberos.c
index d5d8e2a..7d75f7e 100644
--- a/source3/libads/kerberos.c
+++ b/source3/libads/kerberos.c
@@ -282,7 +282,7 @@ int kerberos_kinit_password_ext(const char *principal,
 		smb_krb5_get_init_creds_opt_free(ctx, opt);
 	}
 	if (cc) {
-		krb5_cc_close(ctx, cc);
+		krb5_cc_destroy(ctx, cc);
 	}
 	if (ctx) {
 		krb5_free_context(ctx);
diff --git a/source4/heimdal/lib/roken/resolve.c b/source4/heimdal/lib/roken/resolve.c
index b27f37a..0cfe0b0 100644
--- a/source4/heimdal/lib/roken/resolve.c
+++ b/source4/heimdal/lib/roken/resolve.c
@@ -588,6 +588,7 @@ dns_lookup_int(const char *domain, int rr_class, int rr_type)
 
     len = min(len, size);
     r = parse_reply(reply, len);
+    resolve_free_handle(handle);
     free(reply);
     return r;
 }
-- 
1.8.4.5