[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldappasswd core dumps w/UFC-Crypt on Slack7 (ITS#598)



Full_Name: Bradford L. Barrett
Version: 1.2.11
OS: Slackware 7 base/2.2.15 kernel
URL: 
Submission from: (NULL) (208.60.255.34)


ldappasswd does a core dump (segfault) when attempting to change a password
using {CRYPT} on a Slackware 7 system w/UFC-Crypt (1.3) library installed.
I had the same problem with imap-4.7c and wound up having to modify the code to
check for a NULL return string before doing a strcpy in order to fix it..
It appears that the UFC code has changed a bit and requires the salt to
be in a unique format for it to work properly...  If it's not the right
format, the crypt(3) call just returns a NULL so a strcpy or other pointer
oriented operation segfaults hard :(  Other encryption methods work without
a problem (I've verified MD5 works fine).  I'll run a trace on the code and
see if I can pinpoint the exact location of the problem when I get a free
moment or two.