[Bug 2909] sshd segfaults on non-existent users when there is an NIS ngetgroup included in /etc/passwd

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Wed Oct 10 14:59:09 AEDT 2018


https://bugzilla.mindrot.org/show_bug.cgi?id=2909

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Blocks|                            |2893
                 CC|                            |djm at mindrot.org

--- Comment #1 from Damien Miller <djm at mindrot.org> ---
Thanks - i've committed a similar fix.

commit d1d301a1dd5d6cc3a9ed93ab7ab09dda4cb456e0 (HEAD -> master,
origin/master, origin/HEAD)
Author: Damien Miller <djm at mindrot.org>
Date:   Wed Oct 10 14:57:00 2018 +1100

    in pick_salt() avoid dereference of NULL passwords

    Apparently some NIS implementations can leave pw->pw_passwd (or the
    shadow equivalent) NULL.

    bz#2909; based on patch from Todd Eigenschink


Referenced Bugs:

https://bugzilla.mindrot.org/show_bug.cgi?id=2893
[Bug 2893] Tracking bug for 7.9 release
-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list