Add test case for CVE-2013-1417

ticket: 7670 (new) tags: pullup target_version: 1.11.4
author: Tom Yu <tlyu@mit.edu> 2013-06-28 15:34:17 -0400
committer: Tom Yu <tlyu@mit.edu> 2013-07-01 14:12:49 -0400
commit: f3328214a01fe9ca4de72cb9593ee10c39c638e9 (patch)
tree: 48468f9a6c7de1bb230a2869ad152f37dd7bf8a8 /src/tests/t_cve-2013-1417.py
parent: 3c7f1c21ffaaf6c90f1045f0f5440303c766acc0 (diff)
download: krb5-f3328214a01fe9ca4de72cb9593ee10c39c638e9.tar.gz
krb5-f3328214a01fe9ca4de72cb9593ee10c39c638e9.tar.xz
krb5-f3328214a01fe9ca4de72cb9593ee10c39c638e9.zip
1 files changed, 13 insertions, 0 deletions
diff --git a/src/tests/t_cve-2013-1417.py b/src/tests/t_cve-2013-1417.py
new file mode 100644
index 0000000000..c26930a301
--- /dev/null
+++ b/src/tests/t_cve-2013-1417.py
@@ -0,0 +1,13 @@
+#!/usr/bin/python
+
+from k5test import *
+
+realm = K5Realm(realm='TEST')
+
+# CVE-2013-1417 KDC dereferences null pointer
+
+realm.kinit(realm.user_princ, password('user'))
+realm.run([kvno, '-S', 'host', 'example.com'], expected_code=1)
+# Make sure KDC is still running.
+realm.kinit(realm.user_princ, password('user'))
+success('CVE-2013-1417 regression test')
author	Tom Yu <tlyu@mit.edu>	2013-06-28 15:34:17 -0400
committer	Tom Yu <tlyu@mit.edu>	2013-07-01 14:12:49 -0400
commit	f3328214a01fe9ca4de72cb9593ee10c39c638e9 (patch)
tree	48468f9a6c7de1bb230a2869ad152f37dd7bf8a8 /src/tests/t_cve-2013-1417.py
parent	3c7f1c21ffaaf6c90f1045f0f5440303c766acc0 (diff)
download	krb5-f3328214a01fe9ca4de72cb9593ee10c39c638e9.tar.gz krb5-f3328214a01fe9ca4de72cb9593ee10c39c638e9.tar.xz krb5-f3328214a01fe9ca4de72cb9593ee10c39c638e9.zip