Package: libkrb53 Version: 1.4.3-4 Severity: important After the last krb53 update, attempting to authenticate to a host that has no key (or has once in a realm I can't authenticate to) breaks badly. glibc detects a double-free, and the ticket cache is corrupted. when libkrb53 subsuquently tries to use the corrupt ticket cache, it crashes. I first noticed the problem with ssh-krb5, but it can be reproduced with the ftp in krb5-clients:
starfury:~> kinit cg2v Password for [EMAIL PROTECTED]: Warning: Your password will expire in 193 days on Wed Jul 5 11:55:18 2006 starfury:~> ls -l /tmp/krb5cc_1000 -rw------- 1 cg2v cg2v 466 2005-12-23 11:49 /tmp/krb5cc_1000 starfury:~> ftp erewhon Connected to erewhon. 220 erewhon FTP server (Version 6.00+Heimdal 0.6.3+KTH-KRB 1.2.2) ready. 334 Send authorization data. GSSAPI accepted as authentication type *** glibc detected *** double free or corruption (fasttop): 0x08070af8 *** Abort starfury:~> ls -l /tmp/krb5cc_1000 -rw------- 1 cg2v cg2v 4096 2005-12-23 11:49 /tmp/krb5cc_1000 starfury:~> klist Ticket cache: FILE:/tmp/krb5cc_1000 Default principal: [EMAIL PROTECTED] Valid starting Expires Service principal 12/23/05 11:48:59 12/24/05 11:48:59 krbtgt/[EMAIL PROTECTED] Segmentation fault #0 0xffffe410 in __kernel_vsyscall () #1 0xb7b56691 in raise () from /lib/tls/i686/cmov/libc.so.6 #2 0xb7b57f5b in abort () from /lib/tls/i686/cmov/libc.so.6 #3 0xb7b8cba7 in __libc_message () from /lib/tls/i686/cmov/libc.so.6 #4 0xb7b93177 in _int_free () from /lib/tls/i686/cmov/libc.so.6 #5 0xb7b93612 in free () from /lib/tls/i686/cmov/libc.so.6 #6 0xb7ce8039 in krb5_free_cred_contents () from /usr/lib/libkrb5.so.3 #7 0xb7ce80c1 in krb5_free_creds () from /usr/lib/libkrb5.so.3 #8 0xb7ce8c5a in krb5_free_tgt_creds () from /usr/lib/libkrb5.so.3 #9 0xb7ce3df7 in krb5_get_credentials () from /usr/lib/libkrb5.so.3 #10 0xb7d24925 in krb5_gss_init_sec_context () from /usr/lib/libgssapi_krb5.so.2 #11 0xb7d288dc in gss_init_sec_context () from /usr/lib/libgssapi_krb5.so.2 -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing'), (50, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.12-1-686 Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Versions of packages libkrb53 depends on: ii libc6 2.3.5-8 GNU C Library: Shared libraries an ii libcomerr2 1.38-2 common error description library libkrb53 recommends no packages. -- debconf-show failed -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
