]> git.ipfire.org Git - thirdparty/krb5.git/commit
projects / thirdparty / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ad4dcf1) | patch
Improve safety of KDC AS-REQ processing cleanup 1472/head
authorGreg Hudson <ghudson@mit.edu>
Thu, 11 Dec 2025 07:43:59 +0000 (02:43 -0500)
committerGreg Hudson <ghudson@mit.edu>
Tue, 20 Jan 2026 21:47:07 +0000 (16:47 -0500)
commitdc0fb445d8236ed2d5121f6d9876f91a69c25605
tree346f6622f373b54b1467ee640e6368f086b290datree | snapshot
parentad4dcf1856dadc4b352b5c8ff08e51c7290fb41fcommit | diff
Improve safety of KDC AS-REQ processing cleanup

In finish_process_as_req(), don't clean up
state->reply.enc_part.ciphertext until the end of the function.
Otherwise a dangling pointer appears in the structure while it is used
several times, including potentially by audit plugin modules.

Omit the memset() to 0 for this and
state->ticket_reply.enc_part.ciphertext, as ciphertexts are not
secrets.
src/kdc/do_as_req.c diff | blob | blame | history
Mirror of https://github.com/krb5/krb5.git