git.samba.org - lorikeet-heimdal.git/commit

git.samba.org / lorikeet-heimdal.git / commit

author	Andrew Bartlett <abartlet@samba.org>
	Tue, 1 Nov 2022 01:47:12 +0000 (14:47 +1300)
committer	Joseph Sutton <josephsutton@catalyst.net.nz>
	Wed, 3 May 2023 04:13:16 +0000 (16:13 +1200)
commit	74735b412ea8108263b52bae29bbc54d1a1cd6ec
tree	56e5646a743a64a1429fdcfb0cc9fb88461fc302	tree
parent	044b8f7688d83dfb6afd6e36bd936e2a788ca620	commit \| diff

CVE-2022-37966 HEIMDAL: Look up the server keys to combine with clients etype list to select a session key

We need to select server, not client, to compare client etypes against.

(It is not useful to compare the client-supplied encryption types with
the client's own long-term keys.)

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15237

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>

kdc/kerberos5.c

diff | blob | history

Lorikeet-Heimal

RSS Atom