[krbdev.mit.edu #7807] git commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Wed Jan 8 22:30:32 EST 2014
Fix krb5_copy_context
krb5_copy_context has been broken since 1.8 (it broke in r22456)
because k5_copy_etypes crashes on null enctype lists. Subsequent
additions to the context structure were not reflected in
krb5_copy_context, creating double-free bugs. Make k5_copy_etypes
handle null input and account for all new fields in krb5_copy_context.
Reported by Arran Cudbard-Bell.
(back ported from commit c452644d91d57d8b05ef396a029e34d0c7a48920)
https://github.com/krb5/krb5/commit/13cfe6aad050732cb9fbb025715e7049db6b5a9b
Author: Tom Yu <tlyu at mit.edu>
Commit: 13cfe6aad050732cb9fbb025715e7049db6b5a9b
Branch: krb5-1.12
src/lib/krb5/krb/copy_ctx.c | 14 ++++++++++++++
src/lib/krb5/krb/etype_list.c | 2 ++
2 files changed, 16 insertions(+), 0 deletions(-)
More information about the krb5-bugs
mailing list