git.samba.org / metze / samba / wip.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bf0e904) | patch
CVE-2018-16853: The ticket in check_policy_as can actually be a TGS
authorIsaac Boukris <iboukris@gmail.com>
Fri, 17 Aug 2018 21:40:30 +0000 (00:40 +0300)
committerKarolin Seeger <kseeger@samba.org>
Wed, 28 Nov 2018 07:22:24 +0000 (08:22 +0100)
commit6c453aeb0c771d14fe501e9a37d9f51b9403872b
treeb3701ae35e3a740cb2418b0a5217ddb7b72015b2tree
parentbf0e9041becde3ad15e03d820cd2919c708dd9f5commit | diff
CVE-2018-16853: The ticket in check_policy_as can actually be a TGS

This happens when we are called from S4U2Self flow, and in that case
kdcreq->client is NULL.  Use the name from client entry instead.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13571

Signed-off-by: Isaac Boukris <iboukris@gmail.com>
Reviewed-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
source4/kdc/mit-kdb/kdb_samba_policies.c diff | blob | history
Work in progress branches