Diffusion FreeBSD ports repository cfb473892e7f

security/krb5-122: Fix null dereference in SPNEGO token processing
cfb473892e7f
Actions

Description

security/krb5-122: Fix null dereference in SPNEGO token processing

krb5 1.22.1 erroneously removed a check from get_negTokenResp() for
successful decoding of the mechListMIC field. Restore the check to
prevent a null pointer dereference.

Commit message details obtained from upstream commit.
Obtained from: Upstream commit 4ae75cded

		src commit efb5c07f91c5

MFH: 2026Q2

Details

Provenance

cy	Authored on Mon, Jun 8, 2:42 PM

Parents

R11:526588132e8f: security/krb5-devel: update to the latest MIT/KRB5 github commit

Branches

Unknown

Tags

Unknown

Event Timeline

cy committed R11:cfb473892e7f: security/krb5-122: Fix null dereference in SPNEGO token processing (authored by cy).Mon, Jun 8, 2:57 PM

cy mentioned this in R11:17cf42b9b7b2: security/krb5-122: Fix null dereference in SPNEGO token processing.Mon, Jun 8, 3:03 PM

Changes (2)

Path

Size

security/

krb5-122/

Makefile

files/

patch-lib_gssapi_spnego_spnego__mech.c

R11:cfb473892e7f

View Options

security/krb5-122/Makefile