bug-cvs
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

GSSAPI buffer to small when used with Windows AD


From: DEEngert
Subject: GSSAPI buffer to small when used with Windows AD
Date: Thu, 18 Mar 2004 16:42:48 -0600 (CST)

>Submitter-Id:   net
>Originator:     Douglas Engert
Douglas Engert
>Organization: net
>Confidential:  no 
>Synopsis:      buf[1024] is too small to hold GSSAPI token
>Severity:       serious 
>Priority:       medium 
>Category:      cvs
>Class:         sw-bug
>Release:       1.12.6
>Environment:
        
System: SunOS xxx.anl.gov 5.7 Generic_106541-32 sun4u sparc SUNW,Ultra-5_10
Architecture: sun4

>Description:
        Kerberos tickets obtained from a Microsoft AD may be quite large.
    The buf[1024] in server.c is to small to receive a GSSAPI packet
        with one of these tickets. 

>How-To-Repeat:
>Fix:

Increase the size of the buffer. 

--- ,server.c   Wed Mar  3 07:53:05 2004
+++ server.c    Thu Mar 18 13:30:41 2004
@@ -5966,7 +5966,7 @@
     char hostname[MAXHOSTNAMELEN];
     struct hostent *hp;
     gss_buffer_desc tok_in, tok_out;
-    char buf[1024];
+    char buf[65536];
     OM_uint32 stat_min, ret;
     gss_name_t server_name, client_name;
     gss_cred_id_t server_creds;





reply via email to

[Prev in Thread] Current Thread [Next in Thread]