Skip Menu |
 

Download (untitled) / with headers
text/plain 2.7KiB
From basch@lehman.com Wed Feb 9 18:20:07 2000
Received: from MIT.EDU (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.69.0.28])
by rt-11.mit.edu (8.9.3/8.9.3) with SMTP id SAA11521
for <bugs@RT-11.MIT.EDU>; Wed, 9 Feb 2000 18:20:06 -0500 (EST)
Received: from firewall2.Lehman.COM by MIT.EDU with SMTP
id AA11755; Wed, 9 Feb 00 17:30:56 EST
Received: from relay.lehman.com by firewall2.lehman.com (8.8.6/8.8.6) id RAA02161; Wed, 9 Feb 2000 17:29:41 -0500 (EST)
Received: from unixeng1.lehman.com by relay.lehman.com (8.9.3/8.8.5) id RAA24733; Wed, 9 Feb 2000 17:28:41 -0500 (EST)
Received: from discovery.lehman.com by unixeng1.lehman.com (8.8.8+Sun/Lehman Bros. V1.5)
id RAA08036; Wed, 9 Feb 2000 17:29:10 -0500 (EST)
Received: by discovery.lehman.com (8.8.8+Sun/Lehman Bros. V1.5)
id RAA28488; Wed, 9 Feb 2000 17:29:16 -0500 (EST)
Message-Id: <200002092229.RAA28488@discovery.lehman.com>
Date: Wed, 9 Feb 2000 17:29:16 -0500 (EST)
From: "Richard Basch" <basch@lehman.com>
To: krb5-bugs@MIT.EDU, krbdev@MIT.EDU
Subject: krb5-1.1.1: appl/bsd/login.c

Show quoted text
>Number: 821
>Category: krb5-appl
>Synopsis: krb5-1.1.1: appl/bsd/login.c
>Confidential: yes
>Severity: serious
>Priority: medium
>Responsible: raeburn
>State: closed
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Wed Feb 9 18:21:00 EST 2000
>Last-Modified: Thu Feb 10 04:32:20 EST 2000
>Originator:
>Organization:
>Release:
>Environment:
>Description:
>How-To-Repeat:
>Fix:
>Audit-Trail:

State-Changed-From-To: open-closed
State-Changed-By: raeburn
State-Changed-When: Thu Feb 10 04:31:47 2000
State-Changed-Why:
Thanks, I've checked in the change.

Responsible-Changed-From-To: gnats-admin->raeburn
Responsible-Changed-By: raeburn
Responsible-Changed-When: Thu Feb 10 04:32:07 2000
Responsible-Changed-Why:


Show quoted text
>Unformatted:
A regular (non-Kerberized) telnet to a system results in an immediate
"Connection closed." after the user enters their username/password.
(Yes, I know this is not secure...)

Anyway, apparently, there is a call to krb5_cc_destroy without having an
initialized creds structure.

Enclosed is a patch...

--- login.c 2000/01/20 08:17:52 1.3
+++ login.c 2000/02/09 20:19:12
@@ -1646,7 +1646,7 @@
com_err(argv[0], retval, "while storing credentials");
}

- krb5_cc_destroy(kcontext, xtra_creds);
+ if (xtra_creds) krb5_cc_destroy(kcontext, xtra_creds);
} else if (forwarded_v5_tickets && rewrite_ccache) {
if ((retval = krb5_cc_initialize (kcontext, ccache, me))) {
syslog(LOG_ERR,


Richard Basch
AVP, Distributed Engineering
Lehman Brothers, Inc. Email: basch@lehman.com
101 Hudson St., 28th Floor Voice: +1 201 524 5049
Jersey City, NJ 07302-3988 Fax: +1 201 524 2111