[6033] in Kerberos
Bug in Kerberos 5 Beta 5 distribution
daemon@ATHENA.MIT.EDU (Dave Clarke)
Fri Oct 20 20:47:44 1995
To: kerberos@MIT.EDU
Date: 18 Oct 1995 13:21:34 GMT
From: Dave Clarke <d.clarke.slh0613@oasis.icl.co.uk>
I'm developing a security product based upon Kerberos 5 Beta 5, and
whilst testing the port found what appears to be a glaring bug in
src/lib/krb5/os/mk_faddr.c
The first malloc in krb5_make_fulladr gets a buffer which is too small
for what it is about to put in it. Surely the line should read :
if(!raddr->contents = (krb5_octet*) malloc(raddr->length)))
Is there a list of previously reported bugs in the Kerberos distributions
which I could look up??
regards
Dave Clarke
