oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
30,477 Commits 2 Branches 2 Tags
2a4210b7e99a9126b29aeb1e58cc327069d01097
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Joseph Sutton 2a4210b7e9 gsskrb5: CVE-2022-3437 Pass correct length to _gssapi_verify_pad() 
We later subtract 8 when calculating the length of the output message
buffer. If padlength is excessively high, this calculation can underflow
and result in a very large positive value.

Now we properly constrain the value of padlength so underflow shouldn't
be possible.

Samba BUG: https://bugzilla.samba.org/show_bug.cgi?id=15134

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2022-11-15 17:51:45 -06:00
.github
GHA: Make UBSAN build run
2022-11-01 10:23:47 -05:00
admin
ktutil: Add import command and other improvements
2022-10-03 09:44:22 -05:00
appl
uu_server: Fix a few leaks
2022-02-11 15:19:58 -06:00
cf
cf: Disable broken-getaddrinfo test (fixes check-iprop on OS X)
2022-11-01 16:10:58 -05:00
doc
doc: add dependency on vars.texi
2022-09-16 16:13:50 -04:00
etc
add NTMakefile and windows directories
2011-07-17 12:16:59 -07:00
include
hcrypto: Remove MD2 with prejudice
2022-11-01 16:10:57 -05:00
kadmin
windows: Do not make test in kadmin/
2022-10-03 09:44:22 -05:00
kcm
kcm: Allow disabling automatic TGT renewal
2022-03-25 23:33:02 -05:00
kdc
httpkadmind: Make more like bx509d internally
2022-10-02 22:46:37 -05:00
kpasswd
kpasswdd: Fix leak of keytab on exit
2022-01-19 13:41:29 -06:00
kuser
klist: Real JSON output
2022-10-03 09:44:22 -05:00
lib
gsskrb5: CVE-2022-3437 Pass correct length to _gssapi_verify_pad()
2022-11-15 17:51:45 -06:00
packages
krb5: remove krb5-v4compat.h
2022-09-22 22:13:05 -04:00
po
Fix subject verb agreement in error message...
2018-03-09 17:04:29 -05:00
tests
bx509: Fix test moar
2022-11-02 10:57:55 -05:00
tools
Improve coverage script a bit
2020-04-15 19:05:21 -05:00
windows
Documentation changes for the Windows Build
2022-09-24 20:21:09 +10:00
.gitignore
update .gitignore
2022-01-20 12:49:19 -05:00
.travis.yml
travis: Do not brew update [harder]
2021-03-27 01:08:56 -05:00
acinclude.m4
use m4_define, over-quote string
2004-02-12 14:19:16 +00:00
appveyor.yml
appveyor: Use VS 2019 image to get working msys2
2022-01-05 12:59:35 -06:00
autogen.sh
check for JSON perl module and if not found ask developer to install it
2014-08-22 21:17:16 -07:00
ChangeLog
We stop writing change logs, see the source code version control systems history log instead
2008-11-12 04:17:33 +00:00
ChangeLog.1998
changes upto 1998
2000-06-07 10:01:25 +00:00
ChangeLog.1999
move older stuff over to ChangeLog.1999
2000-11-17 01:27:17 +00:00
ChangeLog.2000
move older entries to ChangeLog.2000
2001-01-03 01:50:47 +00:00
ChangeLog.2001
changes from 2001
2002-08-21 13:29:08 +00:00
ChangeLog.2002
switch to utf8 encoding of all files
2008-09-13 08:53:55 +00:00
ChangeLog.2003
switch to utf8 encoding of all files
2008-09-13 08:53:55 +00:00
ChangeLog.2004
switch to utf8 encoding of all files
2008-09-13 08:53:55 +00:00
ChangeLog.2005
switch to utf8 encoding of all files
2008-09-13 08:53:55 +00:00
ChangeLog.2006
switch to utf8 encoding of all files
2008-09-13 08:53:55 +00:00
ChangeLog.2007
switch to utf8 encoding of all files
2008-09-13 08:53:55 +00:00
CODE_OF_CONDUCT.md
Create CODE_OF_CONDUCT.md
2019-06-07 22:03:05 -04:00
configure.ac
rewrite fallthrough to HEIM_FALLTHROUGH to deal with new Apple SDKs
2022-09-16 15:58:45 -04:00
krb5.conf
Remove use of krb4 settings in example krb5.conf.
2014-04-28 00:56:18 +02:00
LICENSE
update (c)
2014-08-23 19:14:10 -07:00
Makefile.am
Fix make dist
2022-01-14 20:10:19 -06:00
Makefile.am.common
move check-local target to cf/Makefile.am.common
2002-05-19 18:35:37 +00:00
NEWS
Fix transit path validation CVE-2017-6594
2017-04-13 18:06:39 -05:00
NTMakefile
Don't build the docs on appveyor
2019-11-20 18:14:44 -05:00
README
Update README mailing lists and links
2020-06-26 11:29:15 -04:00
README.fast
krb5: note GSS-API can be used as PA plugin interface
2021-12-17 19:42:35 +11:00
README.md
Update badges at bottom of README.md
2022-02-12 15:00:59 -06:00
SECURITY.md
Update SECURITY.md
2019-06-09 13:43:47 -04:00
TODO
need to fix lib/krb5/expand_path_w32.c
2010-01-05 19:21:45 +01:00

README.md

GitHub Build Workflow GitHub Build Workflow GitHub Build Workflow Appveyor-CI build (Windows) Coverage Status

Heimdal

Heimdal is an implementation of:

  • ASN.1/DER,
  • PKIX, and
  • Kerberos.

For information how to install see here.

There are man pages for most of the commands.

Bug reports and bugs are appreciated. Use GitHub issues.

For more information see the project homepage https://heimdal.software/heimdal/ or the mailing lists:

heimdal-announce@heimdal.software low-volume announcement heimdal-discuss@heimdal.software high-volume discussion

send mail to heimdal-announce-subscribe@heimdal.software and heimdal-discuss-subscribe@heimdal.software respectively to subscribe.

Build Status

GitHub Build Workflow GitHub Build Workflow GitHub Build Workflow Appveyor-CI build (Windows) Coverage Status

Reference in New Issue View Git Blame Copy Permalink
Description
Fork of https://github.com/heimdal/heimdal
Readme Multiple Licenses 57 MiB
Languages
C 92.1%
Roff 2.8%
Shell 2.3%
Makefile 0.7%
M4 0.5%
Other 1.4%