git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3a8da51) | patch
CVE-2022-2031 lib:krb5_wrap: Generate valid error codes in smb_krb5_mk_error()
authorJoseph Sutton <josephsutton@catalyst.net.nz>
Fri, 27 May 2022 07:29:34 +0000 (19:29 +1200)
committerJule Anger <janger@samba.org>
Sun, 24 Jul 2022 09:42:02 +0000 (11:42 +0200)
commitcf9e37604409ba0c3c5904af40beb2975c309ad4
tree7fcbab63f6c5727118302ea0d0974f824b2d927ctree
parent3a8da51396f3bf9d4caf8dbd4e75a0314aa47046commit | diff
CVE-2022-2031 lib:krb5_wrap: Generate valid error codes in smb_krb5_mk_error()

The error code passed in will be an offset from ERROR_TABLE_BASE_krb5,
so we need to subtract that before creating the error. Heimdal does this
internally, so it isn't needed there.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15047
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15049
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15074

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andreas Schneider <asn@samba.org>
lib/krb5_wrap/krb5_samba.c diff | blob | history
selftest/knownfail_mit_kdc diff | blob | history
Samba Shared Repository