[krbdev.mit.edu #5856] double-free in gss_krb5int_make_seal_token_v3() [CVE-2007-5971]
Tom Yu via RT
rt-comment at krbdev.mit.edu
Thu Dec 13 23:42:54 EST 2007
actually belongs to #5854: freeing non-heap in gss_indicate_mechs() [CVE-2007-5901]
[tlyu - Thu Dec 13 23:38:35 2007]:
>
> fix CVE-2007-5971: free of non-heap pointer in gss_indicate_mechs()
>
> Commit By: tlyu
>
>
>
> Revision: 20178
> Changed Files:
> _U trunk/
> U trunk/src/lib/gssapi/mechglue/g_initialize.c
More information about the krb5-bugs
mailing list