[Heimdal-source-changes] [heimdal/heimdal] e21866: GSS unwrap: wipe copy of DES key when done with it
GitHub
noreply at github.com
Fre Dec 14 12:18:28 CET 2018
Branch: refs/heads/master
Home: https://github.com/heimdal/heimdal
Commit: e21866f7a29ab9d0fcf69efddaec6f758faf7494
https://github.com/heimdal/heimdal/commit/e21866f7a29ab9d0fcf69efddaec6f758faf7494
Author: Benjamin Kaduk <kaduk at mit.edu>
Date: 2018-12-14 (Fri, 14 Dec 2018)
Changed paths:
M lib/gssapi/krb5/unwrap.c
Log Message:
-----------
GSS unwrap: wipe copy of DES key when done with it
Zero out the DES_cblock structure instead of the (not yet used at this point
in the function) key schedule. The contents could potentially be left
on the stack in the case of an error return from _gssapi_verify_pad().
**NOTE:** This service has been marked for deprecation: https://developer.github.com/changes/2018-04-25-github-services-deprecation/
Functionality will be removed from GitHub.com on January 31st, 2019.
More information about the Heimdal-source-changes
mailing list