Skip Menu |
 

Subject: fix MITKRB5-SA-2008-002 for 1.5-branch
fix MITKRB5-SA-2008-002 (libgssrpc file descriptor array overflow) for the krb5-1.5 branch
From: tlyu@mit.edu
Subject: SVN Commit

pull up r20278 from trunk

r20278@cathode-dark-space: raeburn | 2008-03-18 14:55:26 -0400
ticket: new
subject: MITKRB5-SA-2008-002
target_version: 1.6.4
tags: pullup

Fix MITKRB5-SA-2008-002: array overrun in libgssrpc.

Don't update the internally-tracked maximum file descriptor value if
the new one is FD_SETSIZE (or NOFILE) or above. Reject TCP file
descriptors of FD_SETSIZE (NOFILE) or above.




Commit By: tlyu



Revision: 20293
Changed Files:
_U branches/krb5-1-5/
U branches/krb5-1-5/src/lib/rpc/svc.c
U branches/krb5-1-5/src/lib/rpc/svc_tcp.c