Bugzilla – Attachment 1325 Details for
Bug 1322
pam_end() is not called if authentication fails, which breaks pam-abl
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
Patch for do_cleanup with respect to the signal handler vulnerability fixed in openssh-4.4
sshpam_cleanup.patch (text/plain), 570 bytes, created by
Sandro Wefel
on 2007-07-12 00:47:03 AEST
(
hide
)
Description:
Patch for do_cleanup with respect to the signal handler vulnerability fixed in openssh-4.4
Filename:
MIME Type:
Creator:
Sandro Wefel
Created:
2007-07-12 00:47:03 AEST
Size:
570 bytes
patch
obsolete
>diff -urN openssh-4.6p1/session.c openssh-4.6p1-saw/session.c >--- openssh-4.6p1/session.c 2007-07-09 15:58:36.000000000 +0200 >+++ openssh-4.6p1-saw/session.c 2007-07-10 11:43:21.000000000 +0200 >@@ -2478,8 +2478,19 @@ > return; > called = 1; > >- if (authctxt == NULL || !authctxt->authenticated) >+ if (authctxt == NULL) > return; >+ >+ if (!authctxt->authenticated) { >+#ifdef USE_PAM >+ if (options.use_pam) { >+ sshpam_cleanup(); >+ sshpam_thread_cleanup(); >+ } >+#endif >+ return; >+ } >+ > #ifdef KRB5 > if (options.kerberos_ticket_cleanup && > authctxt->krb5_ctx)
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1325">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 1322
:
1307
|
1308
|
1325
|
1339
|
1342