[krbdev.mit.edu #9218] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Wed Jun 10 16:12:47 EDT 2026
Wed Jun 10 16:12:47 2026: Request 9218 was acted upon.
Transaction: Ticket created by ghudson at mit.edu
Queue: krb5
Subject: git commit
Owner: ghudson at mit.edu
Requestors:
Status: new
Ticket <URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=9218 >
Better validate key_data_ver in iprop decoding
In ulog_conv_2dbentry(), when decoding an update's AT_KEYDATA
attribute, the decoded key_data_ver value is used as a bound on the
enctype and contents fields. Verify that this value does not exceed
the sizes of the update's enctype and contents XDR arrays, to prevent
reading past the end of those arrays. Also check against the expected
lower bound. Reported by Haruki Oyama.
https://github.com/krb5/krb5/commit/7262b0f49e3c37b7237280a1b2e38228831a795d
Author: Greg Hudson <ghudson at mit.edu>
Commit: 7262b0f49e3c37b7237280a1b2e38228831a795d
Branch: master
src/lib/kdb/kdb_convert.c | 6 ++++--
1 file changed, 4 insertions(+), 2 deletions(-)
More information about the krb5-bugs
mailing list