Skip Menu |

Subject: fix MITKRB5-SA-2008-002 for 1.5-branch
fix MITKRB5-SA-2008-002 (libgssrpc file descriptor array overflow) for the krb5-1.5 branch
Subject: SVN Commit

pull up r20278 from trunk

r20278@cathode-dark-space: raeburn | 2008-03-18 14:55:26 -0400
ticket: new
subject: MITKRB5-SA-2008-002
target_version: 1.6.4
tags: pullup

Fix MITKRB5-SA-2008-002: array overrun in libgssrpc.

Don't update the internally-tracked maximum file descriptor value if
the new one is FD_SETSIZE (or NOFILE) or above. Reject TCP file
descriptors of FD_SETSIZE (NOFILE) or above.

Commit By: tlyu

Revision: 20293
Changed Files:
_U branches/krb5-1-5/
U branches/krb5-1-5/src/lib/rpc/svc.c
U branches/krb5-1-5/src/lib/rpc/svc_tcp.c