[krbdev.mit.edu #8666] Explicit NULL deref in finish_dispatch()
Greg Hudson via RT
rt-comment at KRBDEV-PROD-APP-1.mit.edu
Wed Apr 18 17:21:11 EDT 2018
I guess this happens any time a response to a TGS request is too big to
fit into a datagram, which is rare with the DB2 or LDAP KDB module but
could easily happen with a KDB module supporting PACs.
We also need to figure out when this bug was introduced. It might have
been commit 0a2f14f752c32a24200363cc6b6ae64a92f81379 but not
necessarily. I can do that research.
More information about the krb5-bugs
mailing list