krb5.git/src/appl/bsd/v4rcp.c, branch proxymech MIT Kerberos patches Remove krb4 support in the applications. login's ability to run aklog 2008-12-15T20:29:01+00:00 Greg Hudson ghudson@mit.edu 2008-12-15T20:29:01+00:00 9cefbad7f53cffbe75044262b98bd34ebe3ae2fd has been preserved and made unconditional on krb4 support, since aklog can now do krb5 auth. The config variable is now named krb_run_aklog (as it was sometimes documented), not krb4_run_aklog as it previously was. ticket: 6303 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21450 dc483132-0cff-0310-8789-dd5450dbe970 
has been preserved and made unconditional on krb4 support, since aklog
can now do krb5 auth.  The config variable is now named krb_run_aklog
(as it was sometimes documented), not krb4_run_aklog as it previously
was.

ticket: 6303
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21450 dc483132-0cff-0310-8789-dd5450dbe970
Convert many uses of sprintf to snprintf or asprintf 2008-12-01T17:09:59+00:00 Greg Hudson ghudson@mit.edu 2008-12-01T17:09:59+00:00 0692bffad6dbd696b2817f59ee7dd2e7e38ceb4b ticket: 6200 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21258 dc483132-0cff-0310-8789-dd5450dbe970 
ticket: 6200
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21258 dc483132-0cff-0310-8789-dd5450dbe970
Use strlcpy instead of strcpy in many places 2008-10-24T20:07:00+00:00 Greg Hudson ghudson@mit.edu 2008-10-24T20:07:00+00:00 fcf15c482b582c4f2e5dd7c6222c4e3509bbb7d6 ticket: 6200 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20919 dc483132-0cff-0310-8789-dd5450dbe970 
ticket: 6200
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20919 dc483132-0cff-0310-8789-dd5450dbe970
Use [v]snprintf or asprintf instead of unchecked sprintf and separate allocation size calculations 2007-07-12T23:35:24+00:00 Ken Raeburn raeburn@mit.edu 2007-07-12T23:35:24+00:00 c67c8d9e788049afcfd76709116172ac26b3c02d git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19709 dc483132-0cff-0310-8789-dd5450dbe970 
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19709 dc483132-0cff-0310-8789-dd5450dbe970
* v4rcp.c (error): Use stdarg version always. Call vsnprintf instead of vsprintf. 2007-06-26T23:04:09+00:00 Ken Raeburn raeburn@mit.edu 2007-06-26T23:04:09+00:00 98ae6e07fe8d5c32b98e06c1a852a32c839d80e2 (strsave): Call strdup. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19642 dc483132-0cff-0310-8789-dd5450dbe970 
(strsave): Call strdup.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19642 dc483132-0cff-0310-8789-dd5450dbe970
* v4rcp.c (kstream_write): Allocate buffer space if it hasn't been 2007-06-26T22:58:46+00:00 Ken Raeburn raeburn@mit.edu 2007-06-26T22:58:46+00:00 8325d6530500cf44fd75d7ddac0a02edd1a26cb2 allocated, in the encrypting case, even if outlen is zero. While I don't believe this can ever happen, it requires careful examination of lots of code paths to figure it out. This change doesn't fix a serious bug, but makes the analysis simple. Also, don't bother with separate code paths for malloc vs realloc depending on the previous values; we can just use realloc always. Thanks to Domagoj Babic for pointing out the (false but understandable) null-pointer problem. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19641 dc483132-0cff-0310-8789-dd5450dbe970 
allocated, in the encrypting case, even if outlen is zero.  While I
don't believe this can ever happen, it requires careful examination of
lots of code paths to figure it out.  This change doesn't fix a
serious bug, but makes the analysis simple.  Also, don't bother with
separate code paths for malloc vs realloc depending on the previous
values; we can just use realloc always.

Thanks to Domagoj Babic for pointing out the (false but
understandable) null-pointer problem.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19641 dc483132-0cff-0310-8789-dd5450dbe970
Check malloc return for null in kstream_create_* instead of 2007-06-26T22:50:36+00:00 Ken Raeburn raeburn@mit.edu 2007-06-26T22:50:36+00:00 f4cb46135ebba2207ed299980da0bf4c45223e11 unconditionally dereferencing. Thanks to Domagoj Babic for finding the bug. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19640 dc483132-0cff-0310-8789-dd5450dbe970 
unconditionally dereferencing.  Thanks to Domagoj Babic for finding
the bug.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19640 dc483132-0cff-0310-8789-dd5450dbe970
Remove varargs.h paths, always use stdarg.h 2007-01-20T16:54:37+00:00 Ken Raeburn raeburn@mit.edu 2007-01-20T16:54:37+00:00 9ddc73e01dcfaba5a1325bf355566a16a397092c git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19088 dc483132-0cff-0310-8789-dd5450dbe970 
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19088 dc483132-0cff-0310-8789-dd5450dbe970
Include k5-int.h instead of krb5.h when 'private' functions are needed 2007-01-20T11:02:58+00:00 Ken Raeburn raeburn@mit.edu 2007-01-20T11:02:58+00:00 adb2febec55161b99818465568d53621e7df22e7 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19080 dc483132-0cff-0310-8789-dd5450dbe970 
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19080 dc483132-0cff-0310-8789-dd5450dbe970
fix MITKRB5-SA-2006-001: multiple local privilege escalation vulnerabilities 2006-08-08T19:26:40+00:00 Tom Yu tlyu@mit.edu 2006-08-08T19:26:40+00:00 7b141abe9aa72db8c7243d4f0a30b87e59789579 * src/appl/gssftp/ftpd/ftpd.c (getdatasock, passive): * src/appl/bsd/v4rcp.c (main): * src/appl/bsd/krcp.c (main): * src/appl/bsd/krshd.c (doit): * src/appl/bsd/login.c (main): * src/clients/ksu/main.c (sweep_up): * src/lib/krb4/kuserok.c (kuserok): Check return values from setuid() and related functions to avoid privilege escalation vulnerabilities. Fixes MITKRB5-SA-2006-001. [CVE-2006-3083, VU#580124, CVE-2006-3084, VU#401660] ticket: new target_version: 1.5.1 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18420 dc483132-0cff-0310-8789-dd5450dbe970 
	* src/appl/gssftp/ftpd/ftpd.c (getdatasock, passive):
	* src/appl/bsd/v4rcp.c (main):
	* src/appl/bsd/krcp.c (main):
	* src/appl/bsd/krshd.c (doit):
	* src/appl/bsd/login.c (main): 
	* src/clients/ksu/main.c (sweep_up):
	* src/lib/krb4/kuserok.c (kuserok): Check return values from
	setuid() and related functions to avoid privilege escalation
	vulnerabilities.  Fixes MITKRB5-SA-2006-001. [CVE-2006-3083,
	VU#580124, CVE-2006-3084, VU#401660]

ticket: new
target_version: 1.5.1
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18420 dc483132-0cff-0310-8789-dd5450dbe970