KDC denial of service attacks [MITKRB5-SA-2011-002 CVE-2011-0281 CVE-2011-0282 CVE...
authorTom Yu <tlyu@mit.edu>
Wed, 9 Feb 2011 20:25:08 +0000 (20:25 +0000)
committerTom Yu <tlyu@mit.edu>
Wed, 9 Feb 2011 20:25:08 +0000 (20:25 +0000)
commit16516c83aca3f78674d103bdae59fde3910ac65c
tree57ca20dda2d9d77f9de28bdf36a31ed4cb4af741
parenta2231ea83d401ec8811c69f7133656caaa1d9667
KDC denial of service attacks [MITKRB5-SA-2011-002 CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]

[CVE-2011-0281 CVE-2011-0282] Fix some LDAP back end principal name
handling that could cause the KDC to hang or crash.

[CVE-2011-0283] Fix a KDC null pointer dereference introduced in krb5-1.9.

ticket: 6860
tags: pullup
target_version: 1.9.1

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24622 dc483132-0cff-0310-8789-dd5450dbe970
src/kdc/dispatch.c
src/plugins/kdb/ldap/libkdb_ldap/kdb_ldap.h
src/plugins/kdb/ldap/libkdb_ldap/kdb_ldap_conn.c
src/plugins/kdb/ldap/libkdb_ldap/ldap_misc.c
src/plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c