]> git.ipfire.org Git - thirdparty/samba.git/commit
projects / thirdparty / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f7a8294) | patch
CVE-2018-16841 heimdal: Fix segfault on PKINIT with mis-matching principal
authorAndrew Bartlett <abartlet@samba.org>
Tue, 23 Oct 2018 04:33:46 +0000 (17:33 +1300)
committerKarolin Seeger <kseeger@samba.org>
Mon, 26 Nov 2018 08:38:10 +0000 (09:38 +0100)
commite1026a1685b5838f2ca67965025b2381751c35cb
tree6cc8f59401f9829a95e0d77cbb6dfdab0c9d98fftree
parentf7a8294d65e5a7424da93499074a30cb65418ce7commit | diff
CVE-2018-16841 heimdal: Fix segfault on PKINIT with mis-matching principal

In Heimdal KRB5_KDC_ERR_CLIENT_NAME_MISMATCH is an enum, so we tried to double-free
mem_ctx.

This was introduced in 9a0263a7c316112caf0265237bfb2cfb3a3d370d for the
MIT KDC effort.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13628

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
source4/kdc/db-glue.c diff | blob | blame | history
Mirror of https://github.com/samba-team/samba.git