krb5: fix CVE-2015-2698 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Wenzong Fan <wenzong.fan@windriver.com>	2015-11-14 05:22:29 -0500
committer	Martin Jansa <Martin.Jansa@gmail.com>	2015-12-18 12:28:24 +0100
commit	f4ed56d0d4962a78491d7c4fbe72ad0a6fe7fe6c (patch)
tree	c3154180589837cd437c90314303da9c593783e7 /meta-python/recipes-devtools/python/python-matplotlib/fix_setupext.patch
parent	c533d4506eb983daf7884ba41bb910c0b1133a3d (diff)
download	meta-openembedded-f4ed56d0d4962a78491d7c4fbe72ad0a6fe7fe6c.tar.gz

krb5: fix CVE-2015-2698

The iakerb_gss_export_sec_context function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service (memory corruption) or possibly have unspecified other impact by interacting with an application that calls the gss_export_sec_context function. NOTE: this vulnerability exists because of an incorrect fix for CVE-2015-2696. Backport upstream commit to fix it: https://github.com/krb5/krb5/commit/3db8dfec1ef50ddd78d6ba9503185995876a39fd Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python-matplotlib/fix_setupext.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: