From f3328214a01fe9ca4de72cb9593ee10c39c638e9 Mon Sep 17 00:00:00 2001
From: Tom Yu <tlyu@mit.edu>
Date: Fri, 28 Jun 2013 15:34:17 -0400
Subject: [PATCH] Add test case for CVE-2013-1417

ticket: 7670 (new)
tags: pullup
target_version: 1.11.4
---
 src/tests/Makefile.in        |  1 +
 src/tests/t_cve-2013-1417.py | 13 +++++++++++++
 2 files changed, 14 insertions(+)
 create mode 100644 src/tests/t_cve-2013-1417.py

diff --git a/src/tests/Makefile.in b/src/tests/Makefile.in
index c5536c3ec8..a7f8c2d413 100644
--- a/src/tests/Makefile.in
+++ b/src/tests/Makefile.in
@@ -106,6 +106,7 @@ check-pytests:: gcred hist kdbtest plugorder t_init_creds t_localauth
 	$(RUNPYTEST) $(srcdir)/t_cve-2012-1014.py $(PYTESTFLAGS)
 	$(RUNPYTEST) $(srcdir)/t_cve-2012-1015.py $(PYTESTFLAGS)
 	$(RUNPYTEST) $(srcdir)/t_cve-2013-1416.py $(PYTESTFLAGS)
+	$(RUNPYTEST) $(srcdir)/t_cve-2013-1417.py $(PYTESTFLAGS)
 
 clean::
 	$(RM) gcred hist kdbtest plugorder t_init_creds t_localauth
diff --git a/src/tests/t_cve-2013-1417.py b/src/tests/t_cve-2013-1417.py
new file mode 100644
index 0000000000..c26930a301
--- /dev/null
+++ b/src/tests/t_cve-2013-1417.py
@@ -0,0 +1,13 @@
+#!/usr/bin/python
+
+from k5test import *
+
+realm = K5Realm(realm='TEST')
+
+# CVE-2013-1417 KDC dereferences null pointer
+
+realm.kinit(realm.user_princ, password('user'))
+realm.run([kvno, '-S', 'host', 'example.com'], expected_code=1)
+# Make sure KDC is still running.
+realm.kinit(realm.user_princ, password('user'))
+success('CVE-2013-1417 regression test')
-- 
2.47.2