[krbdev.mit.edu #8498] git commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Mon Oct 24 15:57:49 EDT 2016
Fix unlikely leak in KDC AS-REQ error path
In prepare_error_as(), if krb5_us_timeofday() fails and error pa-data
was supplied, the FAST cookie and a shallow copy of the error padata
can be leaked. Reported by Will Fiveash.
(cherry picked from commit 8d852c577039d59e1bea383e4ddfe575c20f240d)
https://github.com/krb5/krb5/commit/b5cd94af456bd62a0f71c5bf88dd6a74b5671653
Author: Greg Hudson <ghudson at mit.edu>
Committer: Tom Yu <tlyu at mit.edu>
Commit: b5cd94af456bd62a0f71c5bf88dd6a74b5671653
Branch: krb5-1.14
src/kdc/do_as_req.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
More information about the krb5-bugs
mailing list