git.samba.org / samba-bkup.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bff1978) | patch
CVE-2022-2031 s4:kdc: Add MIT support for ATTRIBUTES_INFO and REQUESTER_SID PAC buffers
authorJoseph Sutton <josephsutton@catalyst.net.nz>
Wed, 15 Jun 2022 07:37:39 +0000 (19:37 +1200)
committerJule Anger <janger@samba.org>
Sun, 24 Jul 2022 09:42:01 +0000 (11:42 +0200)
commitc0395578c50fbc4f1946e2f5a065d94f67212eb0
tree542face7137777a1f2e93ec675af6b967a5d7daatree
parentbff1978187d530164888f2a0c3daa3d6a4ae2245commit | diff
CVE-2022-2031 s4:kdc: Add MIT support for ATTRIBUTES_INFO and REQUESTER_SID PAC buffers

So that we do not confuse TGTs and kpasswd tickets, it is critical to
check that the REQUESTER_SID buffer exists in TGTs, and to ensure that
it is not propagated to service tickets.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15047

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
[jsutton@samba.org Brought in changes to add ATTRIBUTES_INFO and
 REQUESTER_SID buffers to new PACs, and updated knownfails]

[jsutton@samba.org Adjusted MIT knownfails]
selftest/knownfail_mit_kdc diff | blob | history
source4/kdc/mit-kdb/kdb_samba_policies.c diff | blob | history
source4/kdc/mit_samba.c diff | blob | history
source4/kdc/mit_samba.h diff | blob | history
Samba Shared Repository