[11890] in Kerberos-V5-bugs
[krbdev.mit.edu #6865] SVN Commit
daemon@ATHENA.MIT.EDU (Tom Yu via RT)
Wed Feb 9 16:38:17 2011
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Tom Yu via RT" <rt-comment@krbdev.MIT.EDU>
In-Reply-To: <rt-6865@krbdev.mit.edu>
Message-ID: <rt-6865-33767.15.4765092635741@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #6865'":;"'AdminCc of krbdev.mit.edu Ticket #6865'":;@MIT.EDU
Date: Wed, 9 Feb 2011 16:38:09 -0500 (EST)
Reply-To: rt-comment@krbdev.MIT.EDU
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
pull up r24622 from trunk, except for the fix for CVE-2011-0283, which
only applies to krb5-1.9.
------------------------------------------------------------------------
r24622 | tlyu | 2011-02-09 15:25:08 -0500 (Wed, 09 Feb 2011) | 10 lines
ticket: 6860
subject: KDC denial of service attacks [MITKRB5-SA-2011-002 CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]
tags: pullup
target_version: 1.9.1
[CVE-2011-0281 CVE-2011-0282] Fix some LDAP back end principal name
handling that could cause the KDC to hang or crash.
[CVE-2011-0283] Fix a KDC null pointer dereference introduced in krb5-1.9.
http://src.mit.edu/fisheye/changelog/krb5/?cs=24628
Commit By: tlyu
Revision: 24628
Changed Files:
U branches/krb5-1-7/src/plugins/kdb/ldap/libkdb_ldap/kdb_ldap.h
U branches/krb5-1-7/src/plugins/kdb/ldap/libkdb_ldap/kdb_ldap_conn.c
U branches/krb5-1-7/src/plugins/kdb/ldap/libkdb_ldap/ldap_misc.c
U branches/krb5-1-7/src/plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
