Bug 125019

Summary: CAN-2004-0523: MIT Kerberos 5: buffer overflows in krb5_aname_to_localname
Product: [Fedora] Fedora Reporter: Mark J. Cox <mjc>
Component: krb5Assignee: Nalin Dahyabhai <nalin>
Status: CLOSED ERRATA QA Contact: Brian Brock <bbrock>
Severity: medium Docs Contact:
Priority: medium    
Version: 2Keywords: Security
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
URL: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2004-001-an_to_ln.txt
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2004-06-04 16:32:06 EDT Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Description Mark J. Cox 2004-06-02 05:09:42 EDT
The krb5_aname_to_localname() library function contains multiple
buffer overflows which could be exploited to gain unauthorized root

Only configurations which include auth_to_local_names or auth_to_local
directives (neither of which are included in default configurations)
are vulnerable.

        Affects: FC1
        Affects: FC2
Comment 1 Seth Vidal 2004-06-04 15:42:15 EDT

*** This bug has been marked as a duplicate of 125001 ***
Comment 2 Mark J. Cox 2004-06-04 16:31:16 EDT
this is not a duplicate; this is the bug for tracking the fix in
Fedora Core, bug #125001 is for tracking the fix in Red Hat Enterprise