git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4d05697) | patch
s4-smbtorture: Show that the KDC provides no protection from CVE-2017-11103
authorAndrew Bartlett <abartlet@samba.org>
Wed, 12 Jul 2017 12:38:29 +0000 (00:38 +1200)
committerAndrew Bartlett <abartlet@samba.org>
Thu, 2 Nov 2017 06:16:50 +0000 (07:16 +0100)
commitdc3adc898e9a0a5d0966f12d8fc63e0438fecb1e
tree52c3027e61dddf4ae6d401c76ab745433de0bf42tree
parent4d056974dd531b8d01a5453f9c37715c7ea5f9dfcommit | diff
s4-smbtorture: Show that the KDC provides no protection from CVE-2017-11103

The server name in the AS-REQ is unprotected, sadly.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=12894

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Garming Sam <garming@catalyst.net.nz>
Autobuild-User(master): Andrew Bartlett <abartlet@samba.org>
Autobuild-Date(master): Thu Nov  2 07:16:50 CET 2017 on sn-devel-144
source4/torture/krb5/kdc-heimdal.c diff | blob | history
Samba Shared Repository