lp://qastaging/~adam-stokes/ubuntu/lucid/krb5/fix-memleak-init_creds-lp-988055

Created by Adam Stokes and last modified
Get this branch:
bzr branch lp://qastaging/~adam-stokes/ubuntu/lucid/krb5/fix-memleak-init_creds-lp-988055
Only Adam Stokes can upload to this branch. If you are Adam Stokes please log in for upload directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Adam Stokes
Status:
Development

Recent revisions

35. By Adam Stokes

Fix two memory leaks in krb5_get_init_creds path; one of these memory
leaks is quite common for any application such as PAM or kinit that
gets initial credentials, thanks Bastian Blank, Closes: #598032, (LP: #988055)

34. By Steve Beattie

* SECURITY UPDATE: KDC heap corruption and crash vulnerabilities
  - src/kdc/kdc_preauth.c, src/kdc/kdc_util.c,
    src/lib/kdb/kdb_default.c: initialize pointers both at allocation
    and assignment time
  - CVE-2012-1015
* SECURITY UPDATE: denial of service in kadmind (LP: #1009422)
  - src/lib/kadm5/srv/svr_principal.c: check for null password
  - CVE-2012-1013

33. By Steve Beattie

* SECURITY UPDATE: fix multiple kdc DoS issues:
  - db2/lockout.c, ldap/libkdb_ldap/ldap_principal2.c,
    ldap/libkdb_ldap/lockout.c:
    + more strict checking for null pointers
    + disable assert and return when db is locked
    + applied inline from upstream
  - CVE-2011-1528 and CVE-2011-1529
  - MITKRB5-SA-2011-006

32. By Kees Cook

* SECURITY UPDATE: kadmind denial of service from freeing of uninitialized
  pointer.
  - src/kadmin/server/{network,schpw}.c: fix, thanks to upstream.
  - CVE-2011-0285
  - MITKRB5-SA-2011-004

31. By Steve Beattie

* SECURITY UPDATE: kdc denial of service due to double-free if PKINIT
  capability is used.
  - src/kdc/do_as_req.c: clear fields on allocation; applied inline,
    thanks to upstream
  - CVE-2011-0284
  - MITKRB5-SA-2011-003

30. By Steve Beattie

* SECURITY UPDATE: kpropd denial of service via invalid network input
  - src/slave/kpropd.c: don't return on kpropd child exit; applied
    inline.
  - CVE-2010-4022
  - MITKRB5-SA-2011-001
* SECURITY UPDATE: kdc denial of service from unauthenticated remote
  attackers
  - src/plugins/kdb/ldap/libkdb_ldap/kdb_ldap.h,
    src/plugins/kdb/ldap/libkdb_ldap/kdb_ldap_conn.c,
    src/plugins/kdb/ldap/libkdb_ldap/ldap_misc.c,
    src/plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c:
    applied inline
  - CVE-2011-0281
  - CVE-2011-0282
  - MITKRB5-SA-2011-002

29. By Marc Deslauriers

* SECURITY UPDATE: message forgery and privilege escalation via
  unacceptable checksums
  - src/lib/crypto/krb/dk/derive.c, src/lib/crypto/krb/keyed_checksum_types.c,
    src/lib/gssapi/krb5/util_crypt.c, src/lib/krb5/krb/mk_safe.c,
    src/lib/krb5/krb/pac.c, src/lib/krb5/krb/preauth2.c,
    src/plugins/preauth/pkinit/pkinit_srv.c: patched inline, thanks to
    upstream.
  - CVE-2010-1323
  - CVE-2010-1324
  - CVE-2010-4020
  - MITKRB5-SA-2010-007

28. By Kees Cook

* SECURITY UPDATE: remote authenticated user denial of service.
  - src/kdc/kdc_authdata.c: patched inline, thanks to upstream.
  - CVE-2010-1322, MITKRB5-SA-2010-006

27. By Kees Cook

* SECURITY UPDATE: unauthenticated remote attacker can crash kadmind.
  - debian/patches/MITKRB5-SA-2010-005: applied upstream fixes inline
  - CVE-2010-1321

26. By Sam Hartman

Fix crash in renewal and validation, Thanks Joel Johnson for such a
prompt bug report, Closes: #577490

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp://qastaging/ubuntu/quantal/krb5
This branch contains Public information 
Everyone can see this information.

Subscribers