[krbdev.mit.edu #8933] git commit
Greg Hudson via RT
rt at krbdev.mit.edu
Tue Nov 3 13:15:03 EST 2020
<URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=8933 >
Fix input length checking in SPNEGO DER decoding
In get_mech_set(), check the length before reading the first byte, and
decrease the length by the tag byte when reading and verifying the
sequence length.
In get_req_flags(), check the length before reading the first byte,
and check the context tag length after decoding it.
(cherry picked from commit 64f4b75a22212681ca293f8f09ddd24b0244d5b4)
https://github.com/krb5/krb5/commit/8c9443436739ef640062f619aff55f4413a946f0
Author: Greg Hudson <ghudson at mit.edu>
Commit: 8c9443436739ef640062f619aff55f4413a946f0
Branch: krb5-1.18
src/lib/gssapi/spnego/spnego_mech.c | 10 +++++-----
1 files changed, 5 insertions(+), 5 deletions(-)
More information about the krb5-bugs
mailing list