[16797] in Kerberos_V5_Development
Re: Bug in set/change password client library
daemon@ATHENA.MIT.EDU (Greg Hudson)
Thu May 5 12:25:32 2011
From: Greg Hudson <ghudson@mit.edu>
To: Russ Allbery <rra@stanford.edu>
In-Reply-To: <8739ktg7yx.fsf@windlord.stanford.edu>
Date: Thu, 05 May 2011 12:25:24 -0400
Message-ID: <1304612724.2034.116.camel@t410>
Mime-Version: 1.0
Cc: "krbdev@mit.edu" <krbdev@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
On Wed, 2011-05-04 at 23:08 -0400, Russ Allbery wrote:
> There's a bug in the set/change password client library in at least
> Kerberos 1.9 with the parsing of a reply from a server if the reply is
> longer than 255 bytes.
This bug isn't present on trunk, because r24899 consolidated the chpw
and setpw reply parsing and used the (correct) chpw code as the basis.
Does this bug occur in practice? Is it worth making a fix for 1.9 or
earlier?
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
