690595 – Uninitialized variable in ipapwd_encoding.c

Bug 690595 - Uninitialized variable in ipapwd_encoding.c

Summary: Uninitialized variable in ipapwd_encoding.c

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	ipa
Sub Component:
Version:	6.1
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	rc
Target Release:	---
Assignee:	Rob Crittenden
QA Contact:	Chandrasekar Kannan
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2011-03-24 18:23 UTC by Rob Crittenden
Modified:	2015-01-04 23:47 UTC (History)
CC List:	4 users (show)
Fixed In Version:	ipa-2.0.0-18.el6
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2011-05-19 13:44:47 UTC
Target Upstream Version:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHEA-2011:0631	0	normal	SHIPPED_LIVE	new package: ipa	2011-05-18 17:55:55 UTC

Description Rob Crittenden 2011-03-24 18:23:15 UTC

Description of problem:

In the function encrypt_encode_key() princ is not initialized. This would cause a crash if an uninitialized value is freed by krb5_free_principal(krbctx, princ).

Comment 1 Dmitri Pal 2011-03-24 19:03:37 UTC

https://fedorahosted.org/freeipa/ticket/1118

Comment 2 Rob Crittenden 2011-03-25 13:33:41 UTC

master: 8308efeb14baa26c64e97ee5ec3a01229c563856

Comment 4 Jenny Severance 2011-04-08 17:23:09 UTC

please add steps to reproduce this bug. Thanks!

Comment 5 Rob Crittenden 2011-04-11 14:23:44 UTC

We never experienced this bug, Coverity found it. It is not likely a request would get this far but if it did then it would have been possible to cause a crash.

Comment 7 Rob Crittenden 2011-04-12 17:06:04 UTC

Coverity is no longer reporting this as a possible bug, you may mark as verified.

Comment 8 Jenny Severance 2011-04-12 17:13:08 UTC

per comment #7, marking bug verified.

Comment 9 errata-xmlrpc 2011-05-19 13:44:47 UTC

An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHEA-2011-0631.html

Note You need to log in before you can comment on or make changes to this bug.