heimdal/lib at 2a4210b7e99a9126b29aeb1e58cc327069d01097 - heimdal - PVV Git

oysteikt/heimdal

Files

History

Joseph Sutton 2a4210b7e9 gsskrb5: CVE-2022-3437 Pass correct length to _gssapi_verify_pad()

We later subtract 8 when calculating the length of the output message
buffer. If padlength is excessively high, this calculation can underflow
and result in a very large positive value.

Now we properly constrain the value of padlength so underflow shouldn't
be possible.

Samba BUG: https://bugzilla.samba.org/show_bug.cgi?id=15134

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

2022-11-15 17:51:45 -06:00

..

asn1: Fix UB and incorrect codec for unconstrained INTEGER values of -1

2022-11-01 16:10:57 -05:00

base: -Wno-string-concatenation for test_base

2022-11-01 16:10:57 -05:00

com_err: Fix bison/byacc invocation

2022-01-21 23:01:44 -06:00

gss_preauth: remove dead code

2022-01-21 10:09:44 +11:00

gsskrb5: CVE-2022-3437 Pass correct length to _gssapi_verify_pad()

2022-11-15 17:51:45 -06:00

hcrypto: Remove MD2 with prejudice

2022-11-01 16:10:57 -05:00

hdb: fix ldap module build (missing 'is_file_based' and 'can_taste' initializers)

2022-09-24 19:38:16 +10:00

lib/krb5: krb5_get_instance does not work on Windows 7

2020-05-27 23:22:40 -05:00

hx509: hx509_verify_path remove spurious fallthrough

2022-09-16 15:58:45 -04:00

ipc: mach_complete_[a]sync avoid 'ret' set but not used warning

2022-09-16 15:58:45 -04:00

iprop: Enable secondary KDC bootstrapping w/ PKINIT

2022-10-02 22:46:37 -05:00

krb5: remove krb5-v4compat.h

2022-09-22 22:13:05 -04:00

Minor typo/grammar fixes

2017-03-10 15:47:43 -05:00

krb5: CVE-2022-42898 PAC parse integer overflows

2022-11-15 17:51:45 -06:00

krb5: pkinit select_dh_group clarify 'bits' param is the minimum

2022-09-16 17:00:20 -04:00

rewrite fallthrough to HEIM_FALLTHROUGH to deal with new Apple SDKs

2022-09-16 15:58:45 -04:00

Use constant-time memcmp when comparing sensitive buffers

2022-04-30 13:35:52 -04:00

roken: Fix UB

2022-11-01 16:10:57 -05:00

sl: Fix exit(0) when incorrect usage

2022-10-11 21:05:45 -05:00

sqlite: Be thread-safe on Windows too

2021-11-30 11:42:00 -05:00

Fix make dist missing files (#228 )

2016-12-15 12:15:56 -06:00

rewrite fallthrough to HEIM_FALLTHROUGH to deal with new Apple SDKs

2022-09-16 15:58:45 -04:00

Makefile.am

gss: move GSS pre-auth helpers to convenience lib

2021-08-27 15:20:07 +10:00

NTMakefile

gss: move GSS pre-auth helpers to convenience lib

2021-08-27 15:20:07 +10:00