| commit | 6e84215d4aa7ef51096db3b187adbe22cacdd921 | |
| author | Andrew Bartlett <abartlet@samba.org> | |
| Tue, 23 Oct 2018 04:33:46 +0000 (23 17:33 +1300) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Sun, 25 Nov 2018 13:46:49 +0000 (25 14:46 +0100) | ||
| tree | e9ac6469490acbca88be0c15435af74e9dadbee2 | treesnapshot (tar.gz zip) |
| parent | bf596c14c2462b9a15ea738ef4f32b3abb8b63d1 | commitdiff |
CVE-2018-16841 heimdal: Fix segfault on PKINIT with mis-matching principal
In Heimdal KRB5_KDC_ERR_CLIENT_NAME_MISMATCH is an enum, so we tried to double-free
mem_ctx.
This was introduced in 9a0263a7c316112caf0265237bfb2cfb3a3d370d for the
MIT KDC effort.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=13628
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
In Heimdal KRB5_KDC_ERR_CLIENT_NAME_MISMATCH is an enum, so we tried to double-free
mem_ctx.
This was introduced in 9a0263a7c316112caf0265237bfb2cfb3a3d370d for the
MIT KDC effort.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=13628
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
| source4/kdc/db-glue.c | diffblobblamehistory |