projects / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0ec0ec2) | patch
pull up r18420 from trunk
authorTom Yu <tlyu@mit.edu>
Tue, 8 Aug 2006 20:15:15 +0000 (20:15 +0000)
committerTom Yu <tlyu@mit.edu>
Tue, 8 Aug 2006 20:15:15 +0000 (20:15 +0000)
commita1fd6a80ce8d2382fa4c7fbb3a568e11ba2ebaf4
tree3556cb65d3aa9bf0bc1583862eca3d64131a2a17tree | snapshot
parent0ec0ec2472305e0c0d7973bf75f9b60817a09ad7commit | diff
pull up r18420 from trunk

 r18420@cathode-dark-space:  tlyu | 2006-08-08 15:26:40 -0400
 ticket: new
 subject: fix MITKRB5-SA-2006-001: multiple local privilege escalation vulnerabilities
 target_version: 1.5.1
 tags: pullup

  * src/appl/gssftp/ftpd/ftpd.c (getdatasock, passive):
  * src/appl/bsd/v4rcp.c (main):
  * src/appl/bsd/krcp.c (main):
  * src/appl/bsd/krshd.c (doit):
  * src/appl/bsd/login.c (main):
  * src/clients/ksu/main.c (sweep_up):
  * src/lib/krb4/kuserok.c (kuserok): Check return values from
  setuid() and related functions to avoid privilege escalation
  vulnerabilities.  Fixes MITKRB5-SA-2006-001. [CVE-2006-3083,
  VU#580124, CVE-2006-3084, VU#401660]

ticket: 4126
version_fixed: 1.4.4

git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-4@18422 dc483132-0cff-0310-8789-dd5450dbe970
src/appl/bsd/krcp.c diff | blob | history
src/appl/bsd/krshd.c diff | blob | history
src/appl/bsd/login.c diff | blob | history
src/appl/bsd/v4rcp.c diff | blob | history
src/appl/gssftp/ftpd/ftpd.c diff | blob | history
src/clients/ksu/main.c diff | blob | history
src/lib/krb4/kuserok.c diff | blob | history
MIT implementation of the Kerberos network authentication protocol. This repo may be rebased, so don't base your work on it. Use git://github.com/krb5/krb5 instead.