Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-commits
Navigation:
Lists: gentoo-commits: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-commits@g.o
From: "seemant (seemant)" <seemant@g.o>
Subject: gentoo commit in src/patchsets/mit-krb5/1.5.3: 003_all_mit-krb5-SA-2007-006.patch
Date: Fri, 07 Sep 2007 06:10:42 +0000
seemant     07/09/07 06:10:42

  Added:                003_all_mit-krb5-SA-2007-006.patch
  Log:
  add newest krb5 security patch

Revision  Changes    Path
1.1                  src/patchsets/mit-krb5/1.5.3/003_all_mit-krb5-SA-2007-006.patch

file : http://sources.gentoo.org/viewcvs.py/gentoo/src/patchsets/mit-krb5/1.5.3/003_all_mit-krb5-SA-2007-006.patch?rev=1.1&view=markup
plain: http://sources.gentoo.org/viewcvs.py/gentoo/src/patchsets/mit-krb5/1.5.3/003_all_mit-krb5-SA-2007-006.patch?rev=1.1&content-type=text/plain

Index: 003_all_mit-krb5-SA-2007-006.patch
===================================================================
diff -urN krb5-1.5.3.orig/src/lib/kadm5/srv/svr_policy.c krb5-1.5.3/src/lib/kadm5/srv/svr_policy.c
--- krb5-1.5.3.orig/src/lib/kadm5/srv/svr_policy.c	2006-04-13 14:58:56.000000000 -0400
+++ krb5-1.5.3/src/lib/kadm5/srv/svr_policy.c	2007-09-07 02:07:03.000000000 -0400
@@ -211,8 +211,9 @@
     if((mask & KADM5_POLICY))
 	return KADM5_BAD_MASK;
 		
-    ret = krb5_db_get_policy(handle->context, entry->policy, &p, &cnt);
-    if( ret && (cnt==0) )
+    if ((ret = krb5_db_get_policy(handle->context, entry->policy, &p, &cnt)))
+    return ret;
+	if (cnt != 1)
 	return KADM5_UNK_POLICY;
 
     if ((mask & KADM5_PW_MAX_LIFE))
diff -urN krb5-1.5.3.orig/src/lib/rpc/svc_auth_gss.c krb5-1.5.3/src/lib/rpc/svc_auth_gss.c
--- krb5-1.5.3.orig/src/lib/rpc/svc_auth_gss.c	2004-09-17 17:52:12.000000000 -0400
+++ krb5-1.5.3/src/lib/rpc/svc_auth_gss.c	2007-09-07 02:08:00.000000000 -0400
@@ -365,7 +365,7 @@
 	oa = &msg->rm_call.cb_cred;
 	IXDR_PUT_ENUM(buf, oa->oa_flavor);
 	IXDR_PUT_LONG(buf, oa->oa_length);
-	if (oa->oa_length) {
+	if (oa->oa_length && oa->oa_length <= sizeof(rpchdr)) {
 		memcpy((caddr_t)buf, oa->oa_base, oa->oa_length);
 		buf += RNDUP(oa->oa_length) / sizeof(int32_t);
 	}



-- 
gentoo-commits@g.o mailing list


Navigation:
Lists: gentoo-commits: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
gentoo-x86 commit in app-crypt/mit-krb5: ChangeLog mit-krb5-1.5.2-r2.ebuild mit-krb5-1.5.2-r1.ebuild mit-krb5-1.5.2-r3.ebuild
Next by thread:
gentoo commit in src/patchsets/mit-krb5/1.5.3: 003_all_mit-krb5-SA-2007-006.patch
Previous by date:
gentoo-x86 commit in app-crypt/mit-krb5: ChangeLog mit-krb5-1.5.2-r2.ebuild mit-krb5-1.5.2-r1.ebuild mit-krb5-1.5.2-r3.ebuild
Next by date:
gentoo commit in src/patchsets/mit-krb5/1.5.3: 003_all_mit-krb5-SA-2007-006.patch


Updated Feb 21, 2012

Summary: Archive of the gentoo-commits mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.