summaryrefslogtreecommitdiff
path: root/security/mit-krb5/patches/patch-cb
diff options
context:
space:
mode:
Diffstat (limited to 'security/mit-krb5/patches/patch-cb')
-rw-r--r--security/mit-krb5/patches/patch-cb15
1 files changed, 15 insertions, 0 deletions
diff --git a/security/mit-krb5/patches/patch-cb b/security/mit-krb5/patches/patch-cb
new file mode 100644
index 00000000000..014def256af
--- /dev/null
+++ b/security/mit-krb5/patches/patch-cb
@@ -0,0 +1,15 @@
+$NetBSD: patch-cb,v 1.1.2.2 2010/12/12 15:20:09 spz Exp $
+
+CVE-2010-1323 fix
+
+--- lib/crypto/dk/derive.c.orig 2010-12-03 11:38:08.683111800 -0600
++++ lib/crypto/dk/derive.c 2010-12-03 11:38:50.395857000 -0600
+@@ -40,6 +40,8 @@
+ keybytes = enc->keybytes;
+ keylength = enc->keylength;
+
++ if (blocksize == 1)
++ return(KRB5_BAD_ENCTYPE);
+ if ((inkey->length != keylength) ||
+ (outkey->length != keylength))
+ return(KRB5_CRYPTO_INTERNAL);
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-19 12:59:21 +0000