[16364] in Kerberos-V5-bugs
[krbdev.mit.edu #8772] git commit
daemon@ATHENA.MIT.EDU (Greg Hudson via RT)
Fri Sep 27 13:11:30 2019
From: "Greg Hudson via RT" <rt@KRBDEV-PROD-APP-1.mit.edu>
In-Reply-To:
Message-ID: <rt-4.4.4-86751-1569604245-1184.8772-5-0@mit.edu>
To: "AdminCc of krbdev.mit.edu Ticket #8772":;
Date: Fri, 27 Sep 2019 13:10:45 -0400
MIME-Version: 1.0
Reply-To: rt@KRBDEV-PROD-APP-1.mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
<URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=8772 >
Fix KDC crash when logging PKINIT enctypes
Commit a649279727490687d54becad91fde8cf7429d951 introduced a KDC crash
bug due to transposed strlcpy() arguments. Fix the argument order.
This bug does not affect any MIT krb5 release, but affects the Fedora
krb5 packages due to backports. CVE-2019-14844 has been issued as a
result.
https://github.com/krb5/krb5/commit/c3e62609849ab62caf52fa9b90d9ab60d365a64d
Author: Greg Hudson <ghudson@mit.edu>
Commit: c3e62609849ab62caf52fa9b90d9ab60d365a64d
Branch: master
src/kdc/kdc_util.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
