[16980] in Kerberos-V5-bugs
[krbdev.mit.edu #9145] git commit
daemon@ATHENA.MIT.EDU (Greg Hudson via RT)
Tue Oct 22 14:30:20 2024
From: "Greg Hudson via RT" <rt-comment@krbdev.mit.edu>
In-Reply-To:
Message-ID: <rt-4.4.3-2-656499-1729621810-51.9145-4-0@mit.edu>
To: "AdminCc of krbdev.mit.edu Ticket #9145":;
Date: Tue, 22 Oct 2024 14:30:10 -0400
MIME-Version: 1.0
Reply-To: rt-comment@krbdev.mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
Tue Oct 22 14:30:10 2024: Request 9145 was acted upon.
Transaction: Ticket created by ghudson@mit.edu
Queue: krb5
Subject: git commit
Owner: ghudson@mit.edu
Requestors:
Status: new
Ticket <URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=9145 >
Prevent late initialization of GSS error map
Some of the peripheral libgssapi_krb5 utility functions, such as
gss_str_to_oid(), do not access the mechanism list and therefore do
not reach any of the calls to gssint_mechglue_initialize_library().
If one of these functions is called early and produces an error, its
call to map_error() will operate on the uninitialized error map. When
the library is later initialized, any entries added to the error map
this way will be leaked.
To ensure that the error map is initialized before it is operated on,
add library initialization calls to gssint_mecherrmap_map() and
gssint_mecherrmap_get().
https://github.com/krb5/krb5/commit/bba0c36394cb88265da6e3d6566dd88b9c7978ca
Author: Greg Hudson <ghudson@mit.edu>
Commit: bba0c36394cb88265da6e3d6566dd88b9c7978ca
Branch: master
src/lib/gssapi/generic/Makefile.in | 2 +-
src/lib/gssapi/generic/deps | 13 +++++++------
src/lib/gssapi/generic/util_errmap.c | 6 +++++-
3 files changed, 13 insertions(+), 8 deletions(-)
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
