4601 – Buffer overflow in rdesktop kerberos+CredSSP

Bug 4601 - Buffer overflow in rdesktop kerberos+CredSSP

Summary: Buffer overflow in rdesktop kerberos+CredSSP

Status:	CLOSED DUPLICATE of bug 2571

Alias:	None

Product:	ThinLinc
Classification:	Unclassified
Component:	\| rdesktop (deprecated) (show other bugs)
Version:	4.0.0
Hardware:	PC Unknown

Importance:	P2 Normal
Target Milestone:	4.1.0
Assignee:	Henrik Andersson

URL:
Keywords:

Depends on:
Blocks:

Reported:	2013-04-17 09:18 CEST by Henrik Andersson
Modified:	2013-04-30 12:26 CEST (History)
CC List:	0 users

See Also:
Acceptance Criteria:

Attachments
Suppression file for valgrind (113 bytes, application/octet-stream) 2013-04-18 09:55 CEST, Henrik Andersson	Details
View All Add an attachment (proposed patch, testcase, etc.)

Description Henrik Andersson cendio

2013-04-17 09:18:19 CEST

due to an assumption that token buffers streams always are < 4096 bytes.

Comment 1 Henrik Andersson cendio

2013-04-18 09:55:14 CEST

Created attachment 471 [details]
Suppression file for valgrind

use like:

valgrind --suppressions=rdesktop.supp ./rdesktop

and all ssl/krb issues are filtered away.

Comment 2 Henrik Andersson cendio

2013-04-22 08:46:58 CEST

Fixed in commit r1709

Comment 3 Pierre Ossman cendio

2013-04-30 12:26:23 CEST


*** This bug has been marked as a duplicate of bug 2571 ***

Note You need to log in before you can comment on or make changes to this bug.