Diffusion FreeBSD src repository 0c0c89736597

heimdal: Resolve hdb_free_entry() SIGSEGV/SIGILL
0c0c89736597
Actions

Description

heimdal: Resolve hdb_free_entry() SIGSEGV/SIGILL

When the client sends kadmind a create principal (kadm_create) request
kadm_s_create_principal() returns an error before zeroing out ent (an
hdb entry structure wrapper -- hdb_entry_ex), resulting in a NULL
reference.

Fix obtained from upstream commit 35ea4955a.

PR: 268059
Reported by: Robert Morris <rtm@lcs.mit.edu>
Obtained from: Heimdal commit 35ea4955a
Approved by: re (cperciva)

(cherry picked from commit 6a70e0b4cdc606931555cdc59dc6c8d4a3ab4e3e)
(cherry picked from commit 75b5693ed73e4abb6dbb90affbf3ba56c4cdfdc4)

Details

Provenance

cy	Authored on Feb 7 2023, 3:46 PM
emaste	Committed on Mar 16 2023, 5:44 PM

Parents

rG08ffa93d9f0e: heimdal: Fix CVE-2022-4152, signature validation error

Branches

Unknown

Tags

Unknown

Event Timeline

emaste committed rG0c0c89736597: heimdal: Resolve hdb_free_entry() SIGSEGV/SIGILL (authored by cy).Mar 16 2023, 5:44 PM

Changes (1)

Path

Size

crypto/

heimdal/

lib/

kadm5/

create_s.c

rG0c0c89736597

View Options

crypto/heimdal/lib/kadm5/create_s.c