- Fix vulnerability to a double-free condition in KDC daemon
(MITKRB5-SA-2011-003, bnc#671717) CVE-2011-0284 - Fix vulnerability to a double-free condition in KDC daemon (MITKRB5-SA-2011-003, bnc#671717) CVE-2011-0284 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=41
This commit is contained in:
Michael Calmer
Git OBS Bridge
parent
1e4178c989
commit
b12b5169d7
13
krb5-1.8-MITKRB5-SA-2011-003.dif
Normal file
13
krb5-1.8-MITKRB5-SA-2011-003.dif
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
Index: krb5-1.8.1/src/kdc/do_as_req.c
|
||||||
|
===================================================================
|
||||||
|
--- krb5-1.8.1.orig/src/kdc/do_as_req.c
|
||||||
|
+++ krb5-1.8.1/src/kdc/do_as_req.c
|
||||||
|
@@ -784,6 +784,8 @@ prepare_error_as (struct kdc_request_sta
|
||||||
|
pad->contents = td[size]->data;
|
||||||
|
pad->length = td[size]->length;
|
||||||
|
pa[size] = pad;
|
||||||
|
+ td[size]->data = NULL;
|
||||||
|
+ td[size]->length = 0;
|
||||||
|
}
|
||||||
|
krb5_free_typed_data(kdc_context, td);
|
||||||
|
}
|
||||||
@ -1,7 +1,7 @@
|
|||||||
#
|
#
|
||||||
# spec file for package krb5-doc (Version 1.8.3)
|
# spec file for package krb5-doc
|
||||||
#
|
#
|
||||||
# Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany.
|
# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
|
||||||
#
|
#
|
||||||
# All modifications and additions to the file contributed by third parties
|
# All modifications and additions to the file contributed by third parties
|
||||||
# remain the property of their copyright owners, unless otherwise agreed
|
# remain the property of their copyright owners, unless otherwise agreed
|
||||||
@ -21,7 +21,7 @@
|
|||||||
Name: krb5-doc
|
Name: krb5-doc
|
||||||
BuildRequires: ghostscript-library latex2html texlive
|
BuildRequires: ghostscript-library latex2html texlive
|
||||||
Version: 1.8.3
|
Version: 1.8.3
|
||||||
Release: 3
|
Release: 4
|
||||||
%define srcRoot krb5-1.8.3
|
%define srcRoot krb5-1.8.3
|
||||||
Summary: MIT Kerberos5 Implementation--Documentation
|
Summary: MIT Kerberos5 Implementation--Documentation
|
||||||
License: MIT License (or similar)
|
License: MIT License (or similar)
|
||||||
|
|||||||
@ -1,3 +1,10 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Tue Mar 1 12:43:22 CET 2011 - mc@suse.de
|
||||||
|
|
||||||
|
- Fix vulnerability to a double-free condition in KDC daemon
|
||||||
|
(MITKRB5-SA-2011-003, bnc#671717)
|
||||||
|
CVE-2011-0284
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Wed Jan 19 14:42:27 CET 2011 - mc@suse.de
|
Wed Jan 19 14:42:27 CET 2011 - mc@suse.de
|
||||||
|
|
||||||
|
|||||||
@ -1,7 +1,7 @@
|
|||||||
#
|
#
|
||||||
# spec file for package krb5 (Version 1.8.3)
|
# spec file for package krb5
|
||||||
#
|
#
|
||||||
# Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany.
|
# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
|
||||||
#
|
#
|
||||||
# All modifications and additions to the file contributed by third parties
|
# All modifications and additions to the file contributed by third parties
|
||||||
# remain the property of their copyright owners, unless otherwise agreed
|
# remain the property of their copyright owners, unless otherwise agreed
|
||||||
@ -28,7 +28,7 @@ Url: http://web.mit.edu/kerberos/www/
|
|||||||
BuildRequires: bison libcom_err-devel ncurses-devel
|
BuildRequires: bison libcom_err-devel ncurses-devel
|
||||||
BuildRequires: keyutils keyutils-devel
|
BuildRequires: keyutils keyutils-devel
|
||||||
Version: 1.8.3
|
Version: 1.8.3
|
||||||
Release: 3
|
Release: 4
|
||||||
%if ! 0%{?build_mini}
|
%if ! 0%{?build_mini}
|
||||||
BuildRequires: libopenssl-devel openldap2-devel
|
BuildRequires: libopenssl-devel openldap2-devel
|
||||||
# bug437293
|
# bug437293
|
||||||
@ -59,6 +59,7 @@ Patch12: krb5-1.8-MITKRB5-SA-2010-006.dif
|
|||||||
Patch13: MITKRB5-SA-2010-007-1.8.dif
|
Patch13: MITKRB5-SA-2010-007-1.8.dif
|
||||||
Patch14: krb5-1.8-MITKRB5-SA-2011-001.dif
|
Patch14: krb5-1.8-MITKRB5-SA-2011-001.dif
|
||||||
Patch15: krb5-1.8-MITKRB5-SA-2011-002.dif
|
Patch15: krb5-1.8-MITKRB5-SA-2011-002.dif
|
||||||
|
Patch16: krb5-1.8-MITKRB5-SA-2011-003.dif
|
||||||
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
||||||
PreReq: mktemp, grep, /bin/touch, coreutils
|
PreReq: mktemp, grep, /bin/touch, coreutils
|
||||||
PreReq: %insserv_prereq %fillup_prereq
|
PreReq: %insserv_prereq %fillup_prereq
|
||||||
@ -210,6 +211,7 @@ Authors:
|
|||||||
%patch13 -p1
|
%patch13 -p1
|
||||||
%patch14 -p1
|
%patch14 -p1
|
||||||
%patch15 -p0
|
%patch15 -p0
|
||||||
|
%patch16 -p1
|
||||||
# Rename the man pages so that they'll get generated correctly.
|
# Rename the man pages so that they'll get generated correctly.
|
||||||
pushd src
|
pushd src
|
||||||
cat %{SOURCE10} | while read manpage ; do
|
cat %{SOURCE10} | while read manpage ; do
|
||||||
|
|||||||
@ -1,3 +1,10 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Tue Mar 1 12:43:22 CET 2011 - mc@suse.de
|
||||||
|
|
||||||
|
- Fix vulnerability to a double-free condition in KDC daemon
|
||||||
|
(MITKRB5-SA-2011-003, bnc#671717)
|
||||||
|
CVE-2011-0284
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Wed Jan 19 14:42:27 CET 2011 - mc@suse.de
|
Wed Jan 19 14:42:27 CET 2011 - mc@suse.de
|
||||||
|
|
||||||
|
|||||||
@ -1,7 +1,7 @@
|
|||||||
#
|
#
|
||||||
# spec file for package krb5 (Version 1.8.3)
|
# spec file for package krb5
|
||||||
#
|
#
|
||||||
# Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany.
|
# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
|
||||||
#
|
#
|
||||||
# All modifications and additions to the file contributed by third parties
|
# All modifications and additions to the file contributed by third parties
|
||||||
# remain the property of their copyright owners, unless otherwise agreed
|
# remain the property of their copyright owners, unless otherwise agreed
|
||||||
@ -28,7 +28,7 @@ Url: http://web.mit.edu/kerberos/www/
|
|||||||
BuildRequires: bison libcom_err-devel ncurses-devel
|
BuildRequires: bison libcom_err-devel ncurses-devel
|
||||||
BuildRequires: keyutils keyutils-devel
|
BuildRequires: keyutils keyutils-devel
|
||||||
Version: 1.8.3
|
Version: 1.8.3
|
||||||
Release: 3
|
Release: 4
|
||||||
%if ! 0%{?build_mini}
|
%if ! 0%{?build_mini}
|
||||||
BuildRequires: libopenssl-devel openldap2-devel
|
BuildRequires: libopenssl-devel openldap2-devel
|
||||||
# bug437293
|
# bug437293
|
||||||
@ -59,6 +59,7 @@ Patch12: krb5-1.8-MITKRB5-SA-2010-006.dif
|
|||||||
Patch13: MITKRB5-SA-2010-007-1.8.dif
|
Patch13: MITKRB5-SA-2010-007-1.8.dif
|
||||||
Patch14: krb5-1.8-MITKRB5-SA-2011-001.dif
|
Patch14: krb5-1.8-MITKRB5-SA-2011-001.dif
|
||||||
Patch15: krb5-1.8-MITKRB5-SA-2011-002.dif
|
Patch15: krb5-1.8-MITKRB5-SA-2011-002.dif
|
||||||
|
Patch16: krb5-1.8-MITKRB5-SA-2011-003.dif
|
||||||
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
||||||
PreReq: mktemp, grep, /bin/touch, coreutils
|
PreReq: mktemp, grep, /bin/touch, coreutils
|
||||||
PreReq: %insserv_prereq %fillup_prereq
|
PreReq: %insserv_prereq %fillup_prereq
|
||||||
@ -210,6 +211,7 @@ Authors:
|
|||||||
%patch13 -p1
|
%patch13 -p1
|
||||||
%patch14 -p1
|
%patch14 -p1
|
||||||
%patch15 -p0
|
%patch15 -p0
|
||||||
|
%patch16 -p1
|
||||||
# Rename the man pages so that they'll get generated correctly.
|
# Rename the man pages so that they'll get generated correctly.
|
||||||
pushd src
|
pushd src
|
||||||
cat %{SOURCE10} | while read manpage ; do
|
cat %{SOURCE10} | while read manpage ; do
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user