aboutsummaryrefslogtreecommitdiff
path: root/src/lib/krb5/krb/ChangeLog
diff options
context:
space:
mode:
authorEzra Peisach <epeisach@mit.edu>2005-01-17 17:32:26 +0000
committerEzra Peisach <epeisach@mit.edu>2005-01-17 17:32:26 +0000
commitdc57beffefe7df48e440887976fbbaefa71b828a (patch)
tree2ea5c8b302ec1453e862e50e313ab10aa93a32b7 /src/lib/krb5/krb/ChangeLog
parent2656e5e1e026f800559eed79dfcc58cd3da5d9a0 (diff)
downloadkrb5-dc57beffefe7df48e440887976fbbaefa71b828a.zip
krb5-dc57beffefe7df48e440887976fbbaefa71b828a.tar.gz
krb5-dc57beffefe7df48e440887976fbbaefa71b828a.tar.bz2
subject; krb5_do_preauth could attempt to free NULL pointer
* preauth2.c (krb5_do_preauth): Upon error in decoding krb5_type_info{,2}, on failure, do not call krb5_free_type_info with a null pointer. The only way to reach this code is to set a preauth list requesting for ETYPE_INFO or ETYPE_INFO2 in a call to krb5_get_in_tkt_with_password. Before sending the request, krb5_do_preauth tries to parse a NULL length asn1 buffer, fails and tries to free a null pointer. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17047 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/lib/krb5/krb/ChangeLog')
-rw-r--r--src/lib/krb5/krb/ChangeLog6
1 files changed, 6 insertions, 0 deletions
diff --git a/src/lib/krb5/krb/ChangeLog b/src/lib/krb5/krb/ChangeLog
index 2241278..95578ce 100644
--- a/src/lib/krb5/krb/ChangeLog
+++ b/src/lib/krb5/krb/ChangeLog
@@ -1,3 +1,9 @@
+2005-01-17 Ezra Peisach <epeisach@mit.edu>
+
+ * preauth2.c (krb5_do_preauth): Upon error in decoding
+ krb5_type_info{,2}, on failure, do not call krb5_free_type_info
+ with a null pointer.
+
2005-01-15 Jeffrey Altman <jaltman@mit.edu>
* cp_key_cnt.c, copy_princ.c:
generated by cgit v1.1 at 2024-07-09 16:23:19 +0000