pull up r23724 from trunk
authorTom Yu <tlyu@mit.edu>
Tue, 16 Feb 2010 22:21:08 +0000 (22:21 +0000)
committerTom Yu <tlyu@mit.edu>
Tue, 16 Feb 2010 22:21:08 +0000 (22:21 +0000)
commit2124696b44e8812548a161905bce2e80f146b90c
tree6616e076b30a5bc1f6dd57a3a170128abbce897d
parent11199521554dc4a0d75a36d001900cbeb78652cf
pull up r23724 from trunk

 ------------------------------------------------------------------------
 r23724 | tlyu | 2010-02-16 17:10:17 -0500 (Tue, 16 Feb 2010) | 10 lines

 ticket: 6662
 subject: MITKRB5-SA-2010-001 CVE-2010-0283 KDC denial of service
 tags: pullup
 target_version: 1.8

 Code introduced in krb5-1.7 can cause an assertion failure if a
 KDC-REQ is internally inconsistent, specifically if the ASN.1 tag
 doesn't match the msg_type field.  Thanks to Emmanuel Bouillon (NATO
 C3 Agency) for discovering and reporting this vulnerability.

ticket: 6662
version_fixed: 1.8
status: resolved

git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-8@23725 dc483132-0cff-0310-8789-dd5450dbe970
src/kdc/do_as_req.c
src/kdc/do_tgs_req.c
src/kdc/fast_util.c