blob: 590d769ee72af40c0e424d6ae926e9134e76c3ef (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
|
$NetBSD: patch-lib_kadm5_srv_svr__principal.c,v 1.1 2012/06/06 18:17:46 tez Exp $
Fix for CVE-2012-1013 from:
https://github.com/krb5/krb5/commit/ca2909440015d33be42e77d1955194963d8c0955
--- lib/kadm5/srv/svr_principal.c.orig 2012-06-06 17:25:54.168189200 +0000
+++ lib/kadm5/srv/svr_principal.c
@@ -196,7 +196,7 @@ check_1_6_dummy(kadm5_principal_ent_t en
char *password = *passptr;
/* Old-style randkey operations disallowed tickets to start. */
- if (!(mask & KADM5_ATTRIBUTES) ||
+ if (password == NULL || !(mask & KADM5_ATTRIBUTES) ||
!(entry->attributes & KRB5_KDB_DISALLOW_ALL_TIX))
return;
|