[krbdev.mit.edu #8578] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Thu Apr 20 14:01:11 EDT 2017
Add various bound checks
Add bounds checks where Coverity otherwise reports a defect. Most of
these checks are unlikely to be triggered in practice (Unicode regexps
are unused, and the caller of gss_krb5int_make_seal_token_v3 won't
have a plaintext object larger than half of the address space). The
checks in dump.c could prevent memory access errors resulting from a
malformed dump file.
[ghudson at mit.edu: rewrote commit message]
https://github.com/krb5/krb5/commit/277f9531745c45f14cce729b477e46219334d613
Author: Martin Kittel <martin.kittel at sap.com>
Committer: Greg Hudson <ghudson at mit.edu>
Commit: 277f9531745c45f14cce729b477e46219334d613
Branch: master
src/kadmin/dbutil/dump.c | 14 +++++++++++++-
src/lib/gssapi/krb5/k5sealv3.c | 8 +++++++-
src/lib/kdb/kdb_default.c | 2 +-
src/lib/krb5/unicode/ure/ure.c | 2 +-
4 files changed, 22 insertions(+), 4 deletions(-)
More information about the krb5-bugs
mailing list