1044747 – rlm_krb5 memory corruption

Bug 1044747 - rlm_krb5 memory corruption

Summary: rlm_krb5 memory corruption

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	freeradius
Sub Component:
Version:	20
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	John Dennis
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1044748
TreeView+	depends on / blocked

Reported:	2013-12-18 22:05 UTC by John Dennis
Modified:	2014-01-28 04:36 UTC (History)
CC List:	2 users (show)
Fixed In Version:	freeradius-3.0.1-2.fc20
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Clones:	1044748 (view as bug list)
Environment:
Last Closed:	2014-01-15 00:24:44 UTC
Type:	Bug
Dependent Products:

Attachments	(Terms of Use)
upstream fixes for rlm_krb5 (26.11 KB, patch) 2013-12-18 22:07 UTC, John Dennis	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Description John Dennis 2013-12-18 22:05:04 UTC

rlm_krb5 will corrupt memory or seg fault due to improperly passed pointer to memcpy.

rlm_krb5 will also seg fault due a bug in the krb5 function krb5_copy_context(), this problem and it's solution is described in Bug #1044735.

A discussion concerning the problems with rlm_krb5 can be found here:

http://freeradius.1045715.n5.nabble.com/received-signal-SIGSEGV-Segmentation-fault-malloc-consolidate-av-0x7ffff5e2de80-at-malloc-c-5196-td5723967.html

Attached is a patch which brings all the rlm_krb5 files up to date with the current version of these files in the upstream FreeRADIUS git repo (branch v3.0.x), this will become the basis for the next FreeRADIUS 3.x release.

Comment 1 John Dennis 2013-12-18 22:07:42 UTC

Created attachment 838662 [details]
upstream fixes for rlm_krb5

Comment 2 Fedora Update System 2014-01-15 00:32:09 UTC

freeradius-3.0.1-1.fc20 has been submitted as an update for Fedora 20.
https://admin.fedoraproject.org/updates/freeradius-3.0.1-1.fc20

Comment 3 Fedora Update System 2014-01-23 17:22:02 UTC

freeradius-3.0.1-2.fc20 has been submitted as an update for Fedora 20.
https://admin.fedoraproject.org/updates/freeradius-3.0.1-2.fc20

Comment 4 Fedora Update System 2014-01-28 04:36:25 UTC

freeradius-3.0.1-2.fc20 has been pushed to the Fedora 20 stable repository.  If problems still persist, please make note of it in this bug report.

Note You need to log in before you can comment on or make changes to this bug.