CVE-2010-1321 GSS-API lib null pointer deref (MITKRB5-SA-2010-005)
authorTom Yu <tlyu@mit.edu>
Wed, 19 May 2010 18:09:37 +0000 (18:09 +0000)
committerTom Yu <tlyu@mit.edu>
Wed, 19 May 2010 18:09:37 +0000 (18:09 +0000)
commit3d19e28dc97bb871cef0793e2cf4cf2a70aca239
treeeeaa274c514cd94181fa81e821d175683f15cc54
parent89621595e15af56f8e4fcf7b635c2cedd0e4043a
CVE-2010-1321 GSS-API lib null pointer deref (MITKRB5-SA-2010-005)

Make krb5_gss_accept_sec_context() check for a null authenticator
checksum pointer before attempting to dereference it.

ticket: 6725
tags: pullup
target_version: 1.8.2

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24056 dc483132-0cff-0310-8789-dd5450dbe970
src/lib/gssapi/krb5/accept_sec_context.c