projects / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5223fe7) | patch
pull up r19043 from trunk
authorTom Yu <tlyu@mit.edu>
Tue, 9 Jan 2007 20:21:43 +0000 (20:21 +0000)
committerTom Yu <tlyu@mit.edu>
Tue, 9 Jan 2007 20:21:43 +0000 (20:21 +0000)
commita6965902290d2963a8d9c9dc78d66c3b91df13d5
treeb01e763c6a92892f6aff9890cdc0597d560d90dbtree | snapshot
parent5223fe7f7208afa2830b845154c653f545589cd0commit | diff
pull up r19043 from trunk

 r19043@cathode-dark-space:  tlyu | 2007-01-09 14:45:25 -0500
 ticket: new
 target_version: 1.6
 tags: pullup
 subject: MITKRB5-SA-2006-003: mechglue argument handling too lax
 component: krb5-libs

 Fix mechglue argument checks so that output pointers are always
 initialized regardless of whether the other arguments fail to validate
 for some reason.  This avoids freeing of uninitialized pointers.

 Initialize the gss_buffer_descs in ovsec_kadmd.c.

ticket: 5302
version_fixed: 1.6

git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@19045 dc483132-0cff-0310-8789-dd5450dbe970
25 files changed:
src/kadmin/server/ovsec_kadmd.c diff | blob | history
src/lib/gssapi/mechglue/g_accept_sec_context.c diff | blob | history
src/lib/gssapi/mechglue/g_acquire_cred.c diff | blob | history
src/lib/gssapi/mechglue/g_canon_name.c diff | blob | history
src/lib/gssapi/mechglue/g_compare_name.c diff | blob | history
src/lib/gssapi/mechglue/g_delete_sec_context.c diff | blob | history
src/lib/gssapi/mechglue/g_dsp_name.c diff | blob | history
src/lib/gssapi/mechglue/g_dsp_status.c diff | blob | history
src/lib/gssapi/mechglue/g_dup_name.c diff | blob | history
src/lib/gssapi/mechglue/g_exp_sec_context.c diff | blob | history
src/lib/gssapi/mechglue/g_export_name.c diff | blob | history
src/lib/gssapi/mechglue/g_imp_name.c diff | blob | history
src/lib/gssapi/mechglue/g_imp_sec_context.c diff | blob | history
src/lib/gssapi/mechglue/g_init_sec_context.c diff | blob | history
src/lib/gssapi/mechglue/g_initialize.c diff | blob | history
src/lib/gssapi/mechglue/g_inq_context.c diff | blob | history
src/lib/gssapi/mechglue/g_inq_cred.c diff | blob | history
src/lib/gssapi/mechglue/g_inq_names.c diff | blob | history
src/lib/gssapi/mechglue/g_process_context.c diff | blob | history
src/lib/gssapi/mechglue/g_seal.c diff | blob | history
src/lib/gssapi/mechglue/g_sign.c diff | blob | history
src/lib/gssapi/mechglue/g_store_cred.c diff | blob | history
src/lib/gssapi/mechglue/g_unseal.c diff | blob | history
src/lib/gssapi/mechglue/g_verify.c diff | blob | history
src/lib/gssapi/mechglue/oid_ops.c diff | blob | history
MIT implementation of the Kerberos network authentication protocol. This repo may be rebased, so don't base your work on it. Use git://github.com/krb5/krb5 instead.