[11326] in Kerberos-V5-bugs
[krbdev.mit.edu #6585] SVN Commit
daemon@ATHENA.MIT.EDU (Tom Yu via RT)
Mon Jan 11 23:15:42 2010
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Tom Yu via RT" <rt-comment@krbdev.MIT.EDU>
In-Reply-To: <rt-6585@krbdev.mit.edu>
Message-ID: <rt-6585-32206.17.993724640294@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #6585'":;"'AdminCc of krbdev.mit.edu Ticket #6585'":;@MIT.EDU
Date: Mon, 11 Jan 2010 23:15:31 -0500 (EST)
Reply-To: rt-comment@krbdev.MIT.EDU
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
pull up r23325, 23384 from trunk
------------------------------------------------------------------------
r23384 | hartmans | 2009-11-30 09:14:47 -0500 (Mon, 30 Nov 2009) | 4 lines
ticket: 6585
Fix memory leak
------------------------------------------------------------------------
r23325 | hartmans | 2009-11-23 20:05:30 -0500 (Mon, 23 Nov 2009) | 12 lines
ticket: 6585
subject: KDC MUST NOT accept ap-request armor in FAST TGS
target_version: 1.7.1
tags: pullup
Per the latest preauth framework spec, the working group has decided
to forbid ap-request armor in the TGS request because of security
problems with that armor type.
This commit was tested against an implementation of FAST TGS client to
confirm that if explicit armor is sent, the request is rejected.
http://src.mit.edu/fisheye/changelog/krb5/?cs=23643
Commit By: tlyu
Revision: 23643
Changed Files:
U branches/krb5-1-7/src/kdc/fast_util.c
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
