git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1c40044) | patch
CVE-2018-16853: The ticket in check_policy_as can actually be a TGS
authorIsaac Boukris <iboukris@gmail.com>
Fri, 17 Aug 2018 21:40:30 +0000 (00:40 +0300)
committerKarolin Seeger <kseeger@samba.org>
Tue, 4 Dec 2018 12:18:28 +0000 (13:18 +0100)
commitfb634be8327f48f5401f7f10013cd01599932af2
tree73cb71ab132855541b5e1bde0d52eacdffff6074tree
parent1c4004425d08492ae9ea53ef96297c858aa6b1b8commit | diff
CVE-2018-16853: The ticket in check_policy_as can actually be a TGS

This happens when we are called from S4U2Self flow, and in that case
kdcreq->client is NULL.  Use the name from client entry instead.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13571

Signed-off-by: Isaac Boukris <iboukris@gmail.com>
Reviewed-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
source4/kdc/mit-kdb/kdb_samba_policies.c diff | blob | history
Samba Shared Repository