diff options
| author | Tom Yu <tlyu@mit.edu> | 2002-10-08 02:27:39 +0000 |
|---|---|---|
| committer | Tom Yu <tlyu@mit.edu> | 2002-10-08 02:27:39 +0000 |
| commit | 2d59b5f412e0eacf4c89008b14df8251a92cae09 (patch) | |
| tree | fe7fe64ecd0128e17371ab07efa49102be56ad01 /src/kadmin/cli | |
| parent | 5cad26bc84245c7ca6b63f1d50675ef67d78bd48 (diff) | |
| download | krb5-2d59b5f412e0eacf4c89008b14df8251a92cae09.tar.gz krb5-2d59b5f412e0eacf4c89008b14df8251a92cae09.tar.xz krb5-2d59b5f412e0eacf4c89008b14df8251a92cae09.zip | |
ASN.1 code passes uninitialized values around
* asn1_get.c (asn1_get_tag_indef): Stomp on asn1class,
construction, retlen, and indef, even if we've hit the end of the
buffer, to avoid passing uninitialized values around.
* asn1_k_decode.c: Reformat somewhat and add comments to demystify
things a little.
(opt_field): Fix to explicitly check for end of subbuf before
verifying the pre-fetched tag, which may have been stomped on by
asn1_get_tag_indef() encountering end-of-buffer.
* krb5_decode.c (opt_field, opt_lenfield): Fix to explicitly check
for end of subbuf before verifying the pre-fetched tag, which may
have been stomped on by asn1_get_tag_indef() encountering
end-of-buffer.
ticket: new
target_version: 1.3
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14913 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/kadmin/cli')
0 files changed, 0 insertions, 0 deletions