[krbdev.mit.edu #8430] git commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Wed Jul 6 16:30:49 EDT 2016
Fix incorrect recv() size calculation in libkrad
Before this patch libkrad would always subtract the existing buffer
length from pktlen before passing it to recv(). In the case of stream
sockets, this is incorrect since krad_packet_bytes_needed() already
performs this calculation. Subtracting the buffer length twice could
cause integer underflow on the len parameter to recv().
(cherry picked from commit c969e8a37617e9c7743a28177dd3808f7d08cee9)
https://github.com/krb5/krb5/commit/c0a12661789ac536f0657506f0541dfb4d8a0cd9
Author: Nathaniel McCallum <npmccallum at redhat.com>
Committer: Tom Yu <tlyu at mit.edu>
Commit: c0a12661789ac536f0657506f0541dfb4d8a0cd9
Branch: krb5-1.14
src/lib/krad/remote.c | 4 ++--
1 files changed, 2 insertions(+), 2 deletions(-)
More information about the krb5-bugs
mailing list