[krbdev.mit.edu #2838] Subscript out of range
The RT System itself via RT
rt-comment at krbdev.mit.edu
Mon Dec 20 15:59:15 EST 2004
>From krb5-bugs-incoming-bounces at mit.edu Mon Dec 20 15:59:03 2004
Received: from mailman.mit.edu (PCH.MIT.EDU [18.7.21.90]) by krbdev.mit.edu (8.9.3p2) with ESMTP
id PAA17231; Mon, 20 Dec 2004 15:59:03 -0500 (EST)
Received: from pch.mit.edu (pch.mit.edu [127.0.0.1])
by mailman.mit.edu (8.12.8p2/8.12.8) with ESMTP id iBKKxTYR009555
for <krb5-send-pr at krbdev.mit.edu>; Mon, 20 Dec 2004 15:59:29 -0500
Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU
[18.7.21.83])
by mailman.mit.edu (8.12.8p2/8.12.8) with ESMTP id iBIKj5YR024329
for <krb5-bugs-incoming at PCH.mit.edu>; Sat, 18 Dec 2004 15:45:05 -0500
Received: from drosera.info ([217.153.241.133])iBIKiULq027507
for <krb5-bugs at mit.edu>; Sat, 18 Dec 2004 15:44:36 -0500 (EST)
Received: from drosera.info (drosera.info [127.0.0.1])
by drosera.info (8.12.11/8.12.11) with ESMTP id iBIKj6AI016949
for <krb5-bugs at mit.edu>; Sat, 18 Dec 2004 21:45:06 +0100
Received: (from root at localhost)
by drosera.info (8.12.11/8.12.11/Submit) id iBIKj5uh016946;
Sat, 18 Dec 2004 21:45:05 +0100
Date: Sat, 18 Dec 2004 21:45:05 +0100
Message-Id: <200412182045.iBIKj5uh016946 at drosera.info>
To: krb5-bugs at mit.edu
From: Marcin Garski <mgarski at post.pl>
X-send-pr-version: 3.99
X-Spam-Score: -4.9
X-Spam-Flag: NO
X-Scanned-By: MIMEDefang 2.42
X-Mailman-Approved-At: Mon, 20 Dec 2004 15:59:27 -0500
Subject: Subscript out of range
X-BeenThere: krb5-bugs-incoming at mit.edu
X-Mailman-Version: 2.1
Precedence: list
Reply-To: mgarski at post.pl
Sender: krb5-bugs-incoming-bounces at mit.edu
Errors-To: krb5-bugs-incoming-bounces at mit.edu
>Submitter-Id: net
>Originator: Marcin Garski
>Organization:
>Confidential: no
>Synopsis: Subscript out of range
>Severity: non-critical
>Priority: medium
>Category: krb5-libs
>Class: sw-bug
>Release: krb5-1.3.4
>Environment:
System: Linux drosera.info 2.6.9 #1 Thu Oct 21 23:11:10 CEST 2004 i686 athlon i386 GNU/Linux
Architecture: i686
>Description:
/src/appl/telnet/libtelnet/kerberos.c
In function kerberos4_status() there is a line (#622):
name[255] = '\0';
But name[] is defined as:
static char name[ANAME_SZ];
and ANAME_SZ == 40
Also one line earlier (#621) there is function call:
strncpy(kname, UserNameRequested, 255);
>How-To-Repeat:
Please read /src/appl/telnet/libtelnet/kerberos.c file.
>Fix:
Probably solution:
Instead of 'name[255] = '\0';' there should be a 'kname[255] = '\0';'
More information about the krb5-bugs
mailing list