summaryrefslogtreecommitdiff
path: root/security/mit-krb5/patches/patch-ca
diff options
context:
space:
mode:
Diffstat (limited to 'security/mit-krb5/patches/patch-ca')
-rw-r--r--security/mit-krb5/patches/patch-ca22
1 files changed, 22 insertions, 0 deletions
diff --git a/security/mit-krb5/patches/patch-ca b/security/mit-krb5/patches/patch-ca
new file mode 100644
index 00000000000..cca444783d2
--- /dev/null
+++ b/security/mit-krb5/patches/patch-ca
@@ -0,0 +1,22 @@
+$NetBSD: patch-ca,v 1.1 2010/12/03 20:11:31 tez Exp $
+
+CVE-2010-1323 fix
+
+--- lib/crypto/keyed_checksum_types.c.orig 2010-12-03 11:36:00.476825900 -0600
++++ lib/crypto/keyed_checksum_types.c 2010-12-03 11:37:44.915328600 -0600
+@@ -51,6 +51,15 @@
+ {
+ unsigned int i, c;
+
++ if (enctype == ENCTYPE_ARCFOUR_HMAC ||
++ enctype == ENCTYPE_ARCFOUR_HMAC_EXP) {
++ *count = 1;
++ if ((*cksumtypes = malloc(sizeof(krb5_cksumtype))) == NULL)
++ return(ENOMEM);
++ (*cksumtypes)[0] = CKSUMTYPE_HMAC_MD5_ARCFOUR;
++ return(0);
++ }
++
+ c = 0;
+ for (i=0; i<krb5_cksumtypes_length; i++) {
+ if ((krb5_cksumtypes_list[i].keyhash &&
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-12 12:45:18 +0000