Content-Type: text/plain Content-Disposition: inline Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.411 (Entity 5.404) From: raeburn@mit.edu Subject: CVS Commit RT-Send-CC: X-RT-Original-Encoding: iso-8859-1 Content-Length: 417 Avoid really, really huge cpu time usage caused by iteration count in spoofed preauth data. (Merely huge cpu time usage is probably still possible.) * aes_s2k.c (krb5int_aes_string_to_key): Return an error if the supplied iteration count is really, really large. To generate a diff of this commit: cvs diff -r1.4 -r1.5 krb5/src/lib/crypto/aes/ChangeLog cvs diff -r1.1 -r1.2 krb5/src/lib/crypto/aes/aes_s2k.c