[krbdev.mit.edu #6574] prompter users should zero out reply data before freeing it
william.fiveash@sun.com via RT
rt-comment at krbdev.mit.edu
Thu Oct 15 14:04:41 EDT 2009
I've been looking at the code that calls krb5_prompter_posix() and I've
noticed that the reply data (which may contain a password) is not being
zeroed out before being freed. When I look at similar code in the
Solaris libpam I notice that the reply data is being zeroed prior to
free. This seems to be a better practice security wise.
I suggest looking at every place a prompter is called and memset() the
reply data with 0 prior to it's being freed.
More information about the krb5-bugs
mailing list