[2658] in Kerberos-V5-bugs

home help back first fref pref prev next nref lref last post

krb5-libs/366: rcache is checked wrt uid instead of euid

daemon@ATHENA.MIT.EDU (tlyu@MIT.EDU)
Tue Feb 4 16:24:11 1997

Resent-From: gnats@rt-11.MIT.EDU (GNATS Management)
Resent-To: krb5-unassigned@RT-11.MIT.EDU
Resent-Reply-To: krb5-bugs@MIT.EDU, tlyu@MIT.EDU
Date: Tue, 4 Feb 1997 16:22:54 -0500
From: tlyu@MIT.EDU
Reply-To: tlyu@MIT.EDU
To: krb5-bugs@MIT.EDU


>Number:         366
>Category:       krb5-libs
>Synopsis:       rcache is checked wrt ruid instead of euid
>Confidential:   no
>Severity:       critical
>Priority:       medium
>Responsible:    krb5-unassigned
>State:          open
>Class:          sw-bug
>Submitter-Id:   unknown
>Arrival-Date:   Tue Feb 04 16:23:01 EST 1997
>Last-Modified:
>Originator:     Tom Yu
>Organization:
mit
>Release:        1.0-development
>Environment:
	
System: SunOS tesla-coil 5.4 Generic_101945-37 sun4m sparc


>Description:
	In krb5_rc_io_open(), the rcache is checked against the real
uid rather than the effective uid.  This is a problem when the real
uid and the effective uid do not match, as the rcache can only be used
once.  (discovered by aellwood@mit.edu)

>How-To-Repeat:
	
>Fix:
	
>Audit-Trail:
>Unformatted:

home help back first fref pref prev next nref lref last post