[sudo-users] Debugging a sudo segmentation fault

Todd C. Miller Todd.Miller at courtesan.com
Tue Nov 3 09:55:45 EST 2009

In message <200911030429.nA34TTwG002945 at darwin.sdsc.edu>
	so spake Jeff Makey (jeff):

> Unfortunately, the above fix does not make a difference with RHEL 3's
> MIT Kerberos 1.2.7 (even with its many backported security fixes).
> The workaround to this problem is to type the password correctly at
> the first prompt, which I can live with.

You might try adding:

    zero_bytes(*opts, sizeof(krb5_get_init_creds_opt));

before the call to krb5_get_init_creds_opt_init().  I seem to recall
that some older versions of krb5_get_init_creds_opt_init() didn't
clear the full opts structure.

 - todd

More information about the sudo-users mailing list