projects / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d9d289e) | patch
fix CVE-2007-4000 modify_policy vulnerability
authorTom Yu <tlyu@mit.edu>
Tue, 4 Sep 2007 18:53:09 +0000 (18:53 +0000)
committerTom Yu <tlyu@mit.edu>
Tue, 4 Sep 2007 18:53:09 +0000 (18:53 +0000)
commitf92298e603212c0d1812e8f2955e9e02b4005ca7
tree69f6addfae01d935198ca786416757674d52952etree | snapshot
parentd9d289e5519303478acf1853a89a3e0fbf170463commit | diff
fix CVE-2007-4000 modify_policy vulnerability

In kadm5_modify_policy_internal, check for nonexistence of policy
before doing anything with it, to avoid memory corruption.

ticket: new
target_version: 1.6.3
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19914 dc483132-0cff-0310-8789-dd5450dbe970
src/lib/kadm5/srv/svr_policy.c diff | blob | history
src/lib/krb5/krb/gc_frm_kdc.c diff | blob | history
MIT implementation of the Kerberos network authentication protocol. This repo may be rebased, so don't base your work on it. Use git://github.com/krb5/krb5 instead.