[krbdev.mit.edu #5921] SVN Commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Fri Mar 28 18:37:47 EDT 2008
pull up r20278 from trunk
r20278 at cathode-dark-space: raeburn | 2008-03-18 14:55:26 -0400
ticket: new
subject: MITKRB5-SA-2008-002
target_version: 1.6.4
tags: pullup
Fix MITKRB5-SA-2008-002: array overrun in libgssrpc.
Don't update the internally-tracked maximum file descriptor value if
the new one is FD_SETSIZE (or NOFILE) or above. Reject TCP file
descriptors of FD_SETSIZE (NOFILE) or above.
Commit By: tlyu
Revision: 20293
Changed Files:
_U branches/krb5-1-5/
U branches/krb5-1-5/src/lib/rpc/svc.c
U branches/krb5-1-5/src/lib/rpc/svc_tcp.c
More information about the krb5-bugs
mailing list