File krb5-MITKRB5-SA-2010-005.dif of Package krb5
Index: krb5-1.6.3/src/lib/gssapi/krb5/accept_sec_context.c
===================================================================
--- krb5-1.6.3.orig/src/lib/gssapi/krb5/accept_sec_context.c
+++ krb5-1.6.3/src/lib/gssapi/krb5/accept_sec_context.c
@@ -437,6 +437,13 @@ krb5_gss_accept_sec_context(minor_status
goto fail;
}
+ if (authdat->checksum == NULL) {
+ /* missing checksum counts as "inappropriate type" */
+ code = KRB5KRB_AP_ERR_INAPP_CKSUM;
+ major_status = GSS_S_FAILURE;
+ goto fail;
+ }
+
/* verify that the checksum is correct */
/*
