git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 97b426b) | patch
CVE-2018-16841 heimdal: Fix segfault on PKINIT with mis-matching principal
authorAndrew Bartlett <abartlet@samba.org>
Tue, 23 Oct 2018 04:33:46 +0000 (17:33 +1300)
committerKarolin Seeger <kseeger@samba.org>
Wed, 28 Nov 2018 07:22:23 +0000 (08:22 +0100)
commitb6e9c4b8bbd63fbf29f576d98ee7ff1154a90565
treec0c0e107e90164d83117cc74804bd3091bbff501tree
parent97b426babaa2a812946c77bd841a33c1a9399ab5commit | diff
CVE-2018-16841 heimdal: Fix segfault on PKINIT with mis-matching principal

In Heimdal KRB5_KDC_ERR_CLIENT_NAME_MISMATCH is an enum, so we tried to double-free
mem_ctx.

This was introduced in 9a0263a7c316112caf0265237bfb2cfb3a3d370d for the
MIT KDC effort.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13628

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
source4/kdc/db-glue.c diff | blob | history
Samba Shared Repository