Skip to content
Commit a8edd9e5 authored by Wenzong Fan's avatar Wenzong Fan Committed by Martin Jansa
Browse files

krb5: fix CVE-2015-2695 

lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before
1.14 relies on an inappropriate context handle, which allows remote
attackers to cause a denial of service (incorrect pointer read and
process crash) via a crafted SPNEGO packet that is mishandled during
a gss_inquire_context call.

Backport upstream commit to fix it:
https://github.com/krb5/krb5/commit/b51b33f2bc5d1497ddf5bd107f791c101695000d



Signed-off-by: default avatarWenzong Fan <wenzong.fan@windriver.com>
Signed-off-by: default avatarMartin Jansa <Martin.Jansa@gmail.com>
parent 60555f64
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment