Bug 161475

Summary: krb5 krb5_principal_compare NULL pointer crash
Product: [Fedora] Fedora Reporter: Josh Bressers <bressers>
Component: krb5Assignee: Nalin Dahyabhai <nalin>
Status: CLOSED INSUFFICIENT_DATA QA Contact: Brian Brock <bbrock>
Severity: medium Docs Contact:
Priority: medium    
Version: 4CC: security-response-team
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-02-16 22:52:25 EST Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Description Josh Bressers 2005-06-23 12:42:48 EDT
+++ This bug was initially created as a clone of Bug #161471 +++

Suse reported krb5 crashes while comparing principals using
"krb5_principal_compare" because it doesn't check for NULL pointers.

The patch for this issue is attachment 115882 [details]
Comment 1 Josh Bressers 2005-06-23 12:44:13 EDT
This issue should also affect FC3
Comment 3 Mark J. Cox (Product Security) 2005-07-12 13:58:51 EDT
removing embargo
Comment 4 Christian Iseli 2007-01-22 05:33:45 EST
This report targets the FC3 or FC4 products, which have now been EOL'd.

Could you please check that it still applies to a current Fedora release, and
either update the target product or close it ?

Thanks.
Comment 5 petrosyan 2008-02-16 22:52:25 EST
Fedora Core 4 is no longer maintained.

Setting status to "INSUFFICIENT_DATA". If you can reproduce this bug in the
current Fedora release, please reopen this bug and assign it to the
corresponding Fedora version.