summaryrefslogtreecommitdiff
path: root/security/mit-krb5/patches/patch-CVE-2014-4343
diff options
context:
space:
mode:
Diffstat (limited to 'security/mit-krb5/patches/patch-CVE-2014-4343')
-rw-r--r--security/mit-krb5/patches/patch-CVE-2014-434316
1 files changed, 16 insertions, 0 deletions
diff --git a/security/mit-krb5/patches/patch-CVE-2014-4343 b/security/mit-krb5/patches/patch-CVE-2014-4343
new file mode 100644
index 00000000000..b42b8b1d9ff
--- /dev/null
+++ b/security/mit-krb5/patches/patch-CVE-2014-4343
@@ -0,0 +1,16 @@
+$NetBSD: patch-CVE-2014-4343,v 1.1 2014/08/28 22:23:05 tez Exp $
+
+fix for cve-2014-4343 from:
+https://github.com/krb5/krb5/commit/f18ddf5d82de0ab7591a36e465bc24225776940f
+
+
+--- lib/gssapi/spnego/spnego_mech.c
++++ lib/gssapi/spnego/spnego_mech.c
+@@ -796,7 +796,6 @@ init_ctx_reselect(OM_uint32 *minor_status, spnego_gss_ctx_id_t sc,
+ OM_uint32 tmpmin;
+ size_t i;
+
+- generic_gss_release_oid(&tmpmin, &sc->internal_mech);
+ gss_delete_sec_context(&tmpmin, &sc->ctx_handle,
+ GSS_C_NO_BUFFER);
+
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-29 09:38:07 +0000