diff options
author | Yi Zhao <yi.zhao@windriver.com> | 2021-09-10 11:52:48 +0800 |
---|---|---|
committer | Khem Raj <raj.khem@gmail.com> | 2021-09-10 06:57:43 -0700 |
commit | 32140218a8026016687c7017a82113b0b45cf1a6 (patch) | |
tree | 84a10858784527113f63b9f6c072d245c83c1bf1 /meta-oe/recipes-connectivity/krb5/krb5_1.17.2.bb | |
parent | cebf01f326de251a94f6944b6d06019d673893ae (diff) | |
download | meta-openembedded-contrib-32140218a8026016687c7017a82113b0b45cf1a6.tar.gz |
krb5: fix CVE-2021-37750
CVE-2021-37750:
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before
1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in
kdc/do_tgs_req.c via a FAST inner body that lacks a server field.
References:
https://nvd.nist.gov/vuln/detail/CVE-2021-37750
Patches from:
https://github.com/krb5/krb5/commit/d775c95af7606a51bf79547a94fa52ddd1cb7f49
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Diffstat (limited to 'meta-oe/recipes-connectivity/krb5/krb5_1.17.2.bb')
-rw-r--r-- | meta-oe/recipes-connectivity/krb5/krb5_1.17.2.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta-oe/recipes-connectivity/krb5/krb5_1.17.2.bb b/meta-oe/recipes-connectivity/krb5/krb5_1.17.2.bb index 197c1e096b..6e0b2fdacb 100644 --- a/meta-oe/recipes-connectivity/krb5/krb5_1.17.2.bb +++ b/meta-oe/recipes-connectivity/krb5/krb5_1.17.2.bb @@ -31,6 +31,7 @@ SRC_URI = "http://web.mit.edu/kerberos/dist/${BPN}/${SHRT_VER}/${BP}.tar.gz \ file://krb5-kdc.service \ file://krb5-admin-server.service \ file://CVE-2021-36222.patch;striplevel=2 \ + file://CVE-2021-37750.patch;striplevel=2 \ " SRC_URI[md5sum] = "aa4337fffa3b61f22dbd0167f708818f" SRC_URI[sha256sum] = "1a4bba94df92f6d39a197a10687653e8bfbc9a2076e129f6eb92766974f86134" |