Skip Menu |
 

From: raeburn@mit.edu
Subject: SVN Commit

Fix MITKRB5-SA-2008-002: array overrun in libgssrpc.

Don't update the internally-tracked maximum file descriptor value if
the new one is FD_SETSIZE (or NOFILE) or above. Reject TCP file
descriptors of FD_SETSIZE (NOFILE) or above.


Commit By: raeburn



Revision: 20278
Changed Files:
_U trunk/
U trunk/src/lib/rpc/svc.c
U trunk/src/lib/rpc/svc_tcp.c
From: tlyu@mit.edu
Subject: SVN Commit

pull up r20278 from trunk

r20278@cathode-dark-space: raeburn | 2008-03-18 14:55:26 -0400
ticket: new
subject: MITKRB5-SA-2008-002
target_version: 1.6.4
tags: pullup

Fix MITKRB5-SA-2008-002: array overrun in libgssrpc.

Don't update the internally-tracked maximum file descriptor value if
the new one is FD_SETSIZE (or NOFILE) or above. Reject TCP file
descriptors of FD_SETSIZE (NOFILE) or above.




Commit By: tlyu



Revision: 20282
Changed Files:
_U branches/krb5-1-6/
U branches/krb5-1-6/src/lib/rpc/svc.c
U branches/krb5-1-6/src/lib/rpc/svc_tcp.c