projects / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f621122) | patch
MITKRB5-SA-2008-002
authorKen Raeburn <raeburn@mit.edu>
Tue, 18 Mar 2008 18:55:26 +0000 (18:55 +0000)
committerKen Raeburn <raeburn@mit.edu>
Tue, 18 Mar 2008 18:55:26 +0000 (18:55 +0000)
commitd8d990c823f7ba6070622acf5ff2d08af7c1d7a9
tree22ac46ec09ebd94a20f9e06d54e48ae38a823fb4tree | snapshot
parentf62112276c2147b1334585322db40cd45da30acecommit | diff
MITKRB5-SA-2008-002

Fix MITKRB5-SA-2008-002: array overrun in libgssrpc.

Don't update the internally-tracked maximum file descriptor value if
the new one is FD_SETSIZE (or NOFILE) or above.  Reject TCP file
descriptors of FD_SETSIZE (NOFILE) or above.

ticket: new
target_version: 1.6.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20278 dc483132-0cff-0310-8789-dd5450dbe970
src/lib/rpc/svc.c diff | blob | history
src/lib/rpc/svc_tcp.c diff | blob | history
MIT implementation of the Kerberos network authentication protocol. This repo may be rebased, so don't base your work on it. Use git://github.com/krb5/krb5 instead.