Bug 6367 - globus_i_gsi_gssapi_openssl_error_result doesn't check array bounds
: globus_i_gsi_gssapi_openssl_error_result doesn't check array bounds
Status: RESOLVED FIXED
: GSI C
Authentication
: 4.2.0
: Macintosh All
: P3 normal
: 4.2.1
Assigned To:
:
: 4.0.x
:
:
  Show dependency treegraph
 
Reported: 2008-09-09 13:15 by
Modified: 2008-09-10 16:05 (History)


Attachments


Note

You need to log in before you can comment on or make changes to this bug.


Description From 2008-09-09 13:15:39
These cases where detected by coverity prevent run 2:

globus_i_gsi_gssapi_openssl_error_result pulls an error string out of an array
based on its input value. Some GSSAPI major_status values are bit shifted
beyond the end of the array and can cause wild reads.

In particular, gss_import_sec_context() can generate a GSS_S_NO_CONTEXT.
CID #1097
------- Comment #1 From 2008-09-10 16:05:57 -------
Fixes committed to 4.2 branch, 4.0 branch, and trunk. Relevant CIDs marked as
RESOLVED.