b83e316992
CVE-2010-1321, MITKRB5-SA-2010-005 (bnc#596826) OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=23
19 lines
606 B
Plaintext
19 lines
606 B
Plaintext
Index: krb5-1.8.1/src/lib/gssapi/krb5/accept_sec_context.c
|
|
===================================================================
|
|
--- krb5-1.8.1.orig/src/lib/gssapi/krb5/accept_sec_context.c
|
|
+++ krb5-1.8.1/src/lib/gssapi/krb5/accept_sec_context.c
|
|
@@ -647,6 +647,13 @@ kg_accept_krb5(minor_status, context_han
|
|
goto fail;
|
|
}
|
|
|
|
+ if (authdat->checksum == NULL) {
|
|
+ /* missing checksum counts as "inappropriate type" */
|
|
+ code = KRB5KRB_AP_ERR_INAPP_CKSUM;
|
|
+ major_status = GSS_S_FAILURE;
|
|
+ goto fail;
|
|
+ }
|
|
+
|
|
/* verify that the checksum is correct */
|
|
|
|
/*
|