CVE-2022-2031 s4:kpasswd: Account for missing target principal

author Joseph Sutton <josephsutton@catalyst.net.nz>

Fri, 27 May 2022 07:17:02 +0000 (19:17 +1200)

committer Jule Anger <janger@samba.org>

Sun, 24 Jul 2022 09:42:01 +0000 (11:42 +0200)
author Joseph Sutton <josephsutton@catalyst.net.nz>
Fri, 27 May 2022 07:17:02 +0000 (19:17 +1200)
committer Jule Anger <janger@samba.org>
Sun, 24 Jul 2022 09:42:01 +0000 (11:42 +0200)
diff --git a/source4/kdc/kpasswd-service-mit.c b/source4/kdc/kpasswd-service-mit.c

index 2117c1c169624c3cf837a5d619a2219bf849f9c1..b53c1a4618a7036dfd99dd9bbda0d79e013975ca 100644 (file)
--- a/source4/kdc/kpasswd-service-mit.c
+++ b/source4/kdc/kpasswd-service-mit.c
@@ -143,16 +143,18 @@ static krb5_error_code kpasswd_set_password(struct kdc_server *kdc,
                 return KRB5_KPASSWD_HARDERROR;
         }
  
-       target_realm = smb_krb5_principal_get_realm(
-               mem_ctx, context, target_principal);
-       code = krb5_unparse_name_flags(context,
-                                      target_principal,
-                                      KRB5_PRINCIPAL_UNPARSE_NO_REALM,
-                                      &target_name);
-       if (code != 0) {
-               DBG_WARNING("Failed to parse principal\n");
-               *error_string = "String conversion failed";
-               return KRB5_KPASSWD_HARDERROR;
+       if (target_principal != NULL) {
+               target_realm = smb_krb5_principal_get_realm(
+                       mem_ctx, context, target_principal);
+               code = krb5_unparse_name_flags(context,
+                                              target_principal,
+                                              KRB5_PRINCIPAL_UNPARSE_NO_REALM,
+                                              &target_name);
+               if (code != 0) {
+                       DBG_WARNING("Failed to parse principal\n");
+                       *error_string = "String conversion failed";
+                       return KRB5_KPASSWD_HARDERROR;
+               }
         }
  
         if ((target_name != NULL && target_realm == NULL) ||
author	Joseph Sutton <josephsutton@catalyst.net.nz>
	Fri, 27 May 2022 07:17:02 +0000 (19:17 +1200)
committer	Jule Anger <janger@samba.org>
	Sun, 24 Jul 2022 09:42:01 +0000 (11:42 +0200)