Fix MIT krb5 Security Advisory 2004-002: double-free vulnerabilities

in KDC and libraries Heads-up by: nectar
author: Cy Schubert <cy@FreeBSD.org> 2004-09-01 19:55:26 +0000
committer: Cy Schubert <cy@FreeBSD.org> 2004-09-01 19:55:26 +0000
commit: cc39dd6cddbaaec0244b197ea37513dae2fd14a1 (patch)
tree: e0a09302b49ce0557ee1528a23f9298017a0c7a4 /security/krb5-17/files/patch-lib::krb5::krb::rd_rep.c
parent: . Update to 5.0.28. (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/security/krb5-17/files/patch-lib::krb5::krb::rd_rep.c b/security/krb5-17/files/patch-lib::krb5::krb::rd_rep.c
new file mode 100644
index 000000000000..0772c869f063
--- /dev/null
+++ b/security/krb5-17/files/patch-lib::krb5::krb::rd_rep.c
@@ -0,0 +1,11 @@
+--- lib/krb5/krb/rd_rep.c.orig	Fri Jun 13 17:09:47 2003
++++ lib/krb5/krb/rd_rep.c	Wed Sep  1 11:46:52 2004
+@@ -71,6 +71,8 @@
+ 
+     /* now decode the decrypted stuff */
+     retval = decode_krb5_ap_rep_enc_part(&scratch, repl);
++    if (retval)
++	goto clean_scratch;
+ 
+     /* Check reply fields */
+     if (((*repl)->ctime != auth_context->authentp->ctime) ||
author	Cy Schubert <cy@FreeBSD.org>	2004-09-01 19:55:26 +0000
committer	Cy Schubert <cy@FreeBSD.org>	2004-09-01 19:55:26 +0000
commit	cc39dd6cddbaaec0244b197ea37513dae2fd14a1 (patch)
tree	e0a09302b49ce0557ee1528a23f9298017a0c7a4 /security/krb5-17/files/patch-lib::krb5::krb::rd_rep.c
parent	. Update to 5.0.28. (diff)