[krbdev.mit.edu #6512] SVN Commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Mon Sep 28 16:44:24 EDT 2009
pull up r22413, r22410 from trunk
------------------------------------------------------------------------
r22413 | epeisach | 2009-06-17 13:51:31 -0400 (Wed, 17 Jun 2009) | 5 lines
ticket: 6512
In the previous patch - I neglected a potential NULL deref in the call
to krb5int_yarrow_cipher_final. Trivial fix.
------------------------------------------------------------------------
r22410 | epeisach | 2009-06-11 13:01:13 -0400 (Thu, 11 Jun 2009) | 7 lines
subject: krb5int_yarrow_final could deref NULL if out of memory
ticket: 6512
krb5int_yarrow_final tests if the Yarrow_CTX* is valid (not NULL) -
and if not - signals and error for return - but still invokes
mem_zero (memset) with it as an argument. This will only happen in
an out-of-memory situation.
http://src.mit.edu/fisheye/changelog/krb5/?cs=22799
Commit By: tlyu
Revision: 22799
Changed Files:
U branches/krb5-1-7/src/lib/crypto/yarrow/yarrow.c
More information about the krb5-bugs
mailing list