Skip Menu |
 

From: ghudson@mit.edu
Subject: git commit

Add various bound checks

Add bounds checks where Coverity otherwise reports a defect. Most of
these checks are unlikely to be triggered in practice (Unicode regexps
are unused, and the caller of gss_krb5int_make_seal_token_v3 won't
have a plaintext object larger than half of the address space). The
checks in dump.c could prevent memory access errors resulting from a
malformed dump file.

[ghudson@mit.edu: rewrote commit message]

https://github.com/krb5/krb5/commit/277f9531745c45f14cce729b477e46219334d613
Author: Martin Kittel <martin.kittel@sap.com>
Committer: Greg Hudson <ghudson@mit.edu>
Commit: 277f9531745c45f14cce729b477e46219334d613
Branch: master
src/kadmin/dbutil/dump.c | 14 +++++++++++++-
src/lib/gssapi/krb5/k5sealv3.c | 8 +++++++-
src/lib/kdb/kdb_default.c | 2 +-
src/lib/krb5/unicode/ure/ure.c | 2 +-
4 files changed, 22 insertions(+), 4 deletions(-)