projects / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 100fc74) | patch
MITKRB5-SA-2006-002: svctcp_destroy() can call uninitialized function pointer
authorTom Yu <tlyu@mit.edu>
Tue, 9 Jan 2007 19:45:10 +0000 (19:45 +0000)
committerTom Yu <tlyu@mit.edu>
Tue, 9 Jan 2007 19:45:10 +0000 (19:45 +0000)
commit80f701fb42806dc549cf86a83b3aadbdd07d4c6b
tree1812b58e820c5a20d019d64e656d04c4bbff1984tree | snapshot
parent100fc74f7223a3f43cddc4578eff2c7f3060f540commit | diff
MITKRB5-SA-2006-002: svctcp_destroy() can call uninitialized function pointer

Explicitly null out xprt->xp_auth when AUTH_GSSAPI is being used, so
that svctcp_destroy() will not call through an uninitialized function
pointer after code in svc_auth_gssapi.c has destroyed expired state
structures.  We can't unconditionally null it because the RPCSEC_GSS
implementation needs it to retrieve state.

ticket: new
target_version: 1.6
tags: pullup
component: krb5-libs

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19042 dc483132-0cff-0310-8789-dd5450dbe970
src/lib/rpc/svc.c diff | blob | history
MIT implementation of the Kerberos network authentication protocol. This repo may be rebased, so don't base your work on it. Use git://github.com/krb5/krb5 instead.