Skip Menu |
 

From: ghudson@mit.edu
Subject: git commit

Fix kadmind server validation [CVE-2014-9422]

[MITKRB5-SA-2015-001] In kadmind's check_rpcsec_auth(), use
data_eq_string() instead of strncmp() to check components of the
server principal, so that we don't erroneously match left substrings
of "kadmin", "history", or the realm.

https://github.com/krb5/krb5/commit/6609658db0799053fbef0d7d0aa2f1fd68ef32d8
Author: Greg Hudson <ghudson@mit.edu>
Commit: 6609658db0799053fbef0d7d0aa2f1fd68ef32d8
Branch: master
src/kadmin/server/kadm_rpc_svc.c | 12 +++---------
1 files changed, 3 insertions(+), 9 deletions(-)
From: tlyu@mit.edu
Subject: git commit

Fix kadmind server validation [CVE-2014-9422]

[MITKRB5-SA-2015-001] In kadmind's check_rpcsec_auth(), use
data_eq_string() instead of strncmp() to check components of the
server principal, so that we don't erroneously match left substrings
of "kadmin", "history", or the realm.

(cherry picked from commit 6609658db0799053fbef0d7d0aa2f1fd68ef32d8)

https://github.com/krb5/krb5/commit/2bc4bb02a70d7537baf1c3f6ebc126ded42ea133
Author: Greg Hudson <ghudson@mit.edu>
Committer: Tom Yu <tlyu@mit.edu>
Commit: 2bc4bb02a70d7537baf1c3f6ebc126ded42ea133
Branch: krb5-1.13
src/kadmin/server/kadm_rpc_svc.c | 12 +++---------
1 files changed, 3 insertions(+), 9 deletions(-)