git.samba.org - lorikeet-heimdal.git/commit

git.samba.org / lorikeet-heimdal.git / commit

author	Andrew Bartlett <abartlet@samba.org>
	Tue, 1 Nov 2022 01:47:12 +0000 (14:47 +1300)
committer	Jo Sutton <josutton@catalyst.net.nz>
	Mon, 26 Feb 2024 22:17:21 +0000 (11:17 +1300)
commit	f8bb926b572f408e031417cf13c86e9cd30ced25
tree	d33698cc97ab03fff797602c31f43e54e2fac0ba	tree
parent	a82a3994affe4ec752ab6aa71e24eddb5f101466	commit \| diff

CVE-2022-37966 HEIMDAL: Look up the server keys to combine with clients etype list to select a session key

We need to select server, not client, to compare client etypes against.

(It is not useful to compare the client-supplied encryption types with
the client's own long-term keys.)

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15237

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>

kdc/kerberos5.c

diff | blob | history

Lorikeet-Heimal

RSS Atom