git.ipfire.org Git - thirdparty/krb5.git/commit

]> git.ipfire.org Git - thirdparty/krb5.git/commit

projects / thirdparty / krb5.git / commit

author	Sebastián Alba <sebasjosue84@gmail.com>
	Wed, 8 Apr 2026 22:32:25 +0000 (18:32 -0400)
committer	Greg Hudson <ghudson@mit.edu>
	Sat, 18 Apr 2026 19:35:24 +0000 (15:35 -0400)
commit	2a5fd83d4436583f2ddc0e193269a4d800ee45c4
tree	6273bf1783e35f88d991e7feb1eb52d294432f1c	tree \| snapshot
parent	b7290e0cab5b7e39cd4aa7c098beb18a886d4a1d	commit \| diff

Prevent read overrun in libkdb_ldap

In berval2tl_data(), reject inputs of length less than 2 to prevent an
integer underflow and subsequent read overrun. (The security impact
is negligible as the attacker would have to control the KDB LDAP
server.)

[ghudson@mit.edu: wrote commit message]

ticket: 9206 (new)
tags: pullup
target_version: 1.22-next

src/plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c

diff | blob | blame | history

Mirror of https://github.com/krb5/krb5.git

RSS Atom