lp://qastaging/~adam-stokes/ubuntu/lucid/krb5/fix-memleak-init_creds-lp-988055
- Get this branch:
- bzr branch lp://qastaging/~adam-stokes/ubuntu/lucid/krb5/fix-memleak-init_creds-lp-988055
Branch merges
Branch information
- Owner:
- Adam Stokes
- Status:
- Development
Recent revisions
- 35. By Adam Stokes
-
Fix two memory leaks in krb5_get_init_creds path; one of these memory
leaks is quite common for any application such as PAM or kinit that
gets initial credentials, thanks Bastian Blank, Closes: #598032, (LP: #988055) - 34. By Steve Beattie
-
* SECURITY UPDATE: KDC heap corruption and crash vulnerabilities
- src/kdc/kdc_preauth. c, src/kdc/kdc_util.c,
src/lib/kdb/ kdb_default. c: initialize pointers both at allocation
and assignment time
- CVE-2012-1015
* SECURITY UPDATE: denial of service in kadmind (LP: #1009422)
- src/lib/kadm5/srv/ svr_principal. c: check for null password
- CVE-2012-1013 - 33. By Steve Beattie
-
* SECURITY UPDATE: fix multiple kdc DoS issues:
- db2/lockout.c, ldap/libkdb_ldap/ldap_ principal2. c,
ldap/libkdb_ ldap/lockout. c:
+ more strict checking for null pointers
+ disable assert and return when db is locked
+ applied inline from upstream
- CVE-2011-1528 and CVE-2011-1529
- MITKRB5-SA-2011-006 - 32. By Kees Cook
-
* SECURITY UPDATE: kadmind denial of service from freeing of uninitialized
pointer.
- src/kadmin/server/ {network, schpw}. c: fix, thanks to upstream.
- CVE-2011-0285
- MITKRB5-SA-2011-004 - 31. By Steve Beattie
-
* SECURITY UPDATE: kdc denial of service due to double-free if PKINIT
capability is used.
- src/kdc/do_as_req. c: clear fields on allocation; applied inline,
thanks to upstream
- CVE-2011-0284
- MITKRB5-SA-2011-003 - 30. By Steve Beattie
-
* SECURITY UPDATE: kpropd denial of service via invalid network input
- src/slave/kpropd.c: don't return on kpropd child exit; applied
inline.
- CVE-2010-4022
- MITKRB5-SA-2011-001
* SECURITY UPDATE: kdc denial of service from unauthenticated remote
attackers
- src/plugins/kdb/ldap/ libkdb_ ldap/kdb_ ldap.h,
src/plugins/ kdb/ldap/ libkdb_ ldap/kdb_ ldap_conn. c,
src/plugins/ kdb/ldap/ libkdb_ ldap/ldap_ misc.c,
src/plugins/ kdb/ldap/ libkdb_ ldap/ldap_ principal2. c:
applied inline
- CVE-2011-0281
- CVE-2011-0282
- MITKRB5-SA-2011-002 - 29. By Marc Deslauriers
-
* SECURITY UPDATE: message forgery and privilege escalation via
unacceptable checksums
- src/lib/crypto/ krb/dk/ derive. c, src/lib/ crypto/ krb/keyed_ checksum_ types.c,
src/lib/gssapi/ krb5/util_ crypt.c, src/lib/ krb5/krb/ mk_safe. c,
src/lib/krb5/ krb/pac. c, src/lib/ krb5/krb/ preauth2. c,
src/plugins/ preauth/ pkinit/ pkinit_ srv.c: patched inline, thanks to
upstream.
- CVE-2010-1323
- CVE-2010-1324
- CVE-2010-4020
- MITKRB5-SA-2010-007 - 28. By Kees Cook
-
* SECURITY UPDATE: remote authenticated user denial of service.
- src/kdc/kdc_authdata. c: patched inline, thanks to upstream.
- CVE-2010-1322, MITKRB5-SA-2010-006 - 27. By Kees Cook
-
* SECURITY UPDATE: unauthenticated remote attacker can crash kadmind.
- debian/patches/ MITKRB5- SA-2010- 005: applied upstream fixes inline
- CVE-2010-1321 - 26. By Sam Hartman
-
Fix crash in renewal and validation, Thanks Joel Johnson for such a
prompt bug report, Closes: #577490
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://qastaging/ubuntu/quantal/krb5