]> git.ipfire.org Git - thirdparty/krb5.git/commit
projects / thirdparty / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5c78bb8) | patch
Fix gssrpc data leakage [CVE-2014-9423]
authorGreg Hudson <ghudson@mit.edu>
Mon, 29 Dec 2014 18:17:56 +0000 (13:17 -0500)
committerTom Yu <tlyu@mit.edu>
Wed, 4 Feb 2015 22:21:56 +0000 (17:21 -0500)
commit4b6bb18176d5526b2dda7a3bdc982faf2aafd2aa
treeaed215716c8eee19ad3183c34c58cf80a4b1b461tree
parent5c78bb806338b0feb90f46459834310adf5be00fcommit | diff
Fix gssrpc data leakage [CVE-2014-9423]

[MITKRB5-SA-2015-001] In svcauth_gss_accept_sec_context(), do not copy
bytes from the union context into the handle field we send to the
client.  We do not use this handle field, so just supply a fixed
string of "xxxx".

In gss_union_ctx_id_struct, remove the unused "interposer" field which
was causing part of the union context to remain uninitialized.

(cherry picked from commit 5bb8a6b9c9eb8dd22bc9526751610aaa255ead9c)

ticket: 8070 (new)
version_fixed: 1.12.3
status: resolved
src/lib/gssapi/mechglue/mglueP.h diff | blob | blame | history
src/lib/rpc/svc_auth_gss.c diff | blob | blame | history
Mirror of https://github.com/krb5/krb5.git