Content-Type: text/plain Content-Disposition: inline Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.427 (Entity 5.427) From: tlyu@mit.edu Subject: git commit RT-Send-CC: X-RT-Original-Encoding: iso-8859-1 Content-Length: 629 Check princ length in krb5_sname_match() krb5_sname_match() can read past the end of princ's component array in some circumstances (typically when a keytab contains both "x" and "x/y" principals). Add a length check. Reported by Spencer Jackson. (cherry picked from commit fb9fcfa92fd37221c77e1a4c0b930383e6839e22) https://github.com/krb5/krb5/commit/685cb577890bc565ab122bc65027e177c180e12f Author: Greg Hudson Committer: Tom Yu Commit: 685cb577890bc565ab122bc65027e177c180e12f Branch: krb5-1.13 src/lib/krb5/krb/sname_match.c | 3 +++ 1 files changed, 3 insertions(+), 0 deletions(-)