[krbdev.mit.edu #5508] SVN Commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Tue Apr 3 17:27:33 EDT 2007
Fix MITKRB5-SA-2007-001:
* src/appl/telnet/telnetd/sys_term.c (start_login): Add "--"
argument preceding username, in addition to the original patch.
Explicitly check for leading hyphen in username.
* src/appl/telnet/telnetd/state.c (envvarok): Check for leading
hyphen in environment variables. On advice from Shawn Emery, not
using strchr() as in the original patch.
Commit By: tlyu
Revision: 19396
Changed Files:
_U trunk/
U trunk/src/appl/telnet/telnetd/state.c
U trunk/src/appl/telnet/telnetd/sys_term.c
More information about the krb5-bugs
mailing list