[krbdev.mit.edu #9072] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Tue Nov 15 11:30:05 EST 2022
Tue Nov 15 11:30:05 2022: Request 9072 was acted upon.
Transaction: Ticket created by ghudson at mit.edu
Queue: krb5
Subject: git commit
Owner: ghudson at mit.edu
Requestors:
Status: new
Ticket <URL: https://mv-ezproxy-com.ezproxyberklee.flo.org/rt/Ticket/Display.html?id=9072 >
Avoid small read overrun in UTF8 normalization
In krb5int_utf8_normalize(), check the length of the current character
against the buffer length before reading more than one byte. Credit
to OSS-Fuzz for discovering the overrun.
https://github.com/krb5/krb5/commit/fb9cf8cfbf8da0d160cb61250b952f2b8e5484f4
Author: Greg Hudson <ghudson at mit.edu>
Commit: fb9cf8cfbf8da0d160cb61250b952f2b8e5484f4
Branch: master
src/lib/krb5/unicode/ucstr.c | 6 ++++++
1 file changed, 6 insertions(+)
More information about the krb5-bugs
mailing list