[Midnightbsd-cvs] src [9526] stable/0.9/crypto/heimdal/lib/krb5/ticket.c: fix an impersonation attack against heimdal.
laffer1 at midnightbsd.org
laffer1 at midnightbsd.org
Sat Aug 19 11:33:50 EDT 2017
Revision: 9526
http://svnweb.midnightbsd.org/src/?rev=9526
Author: laffer1
Date: 2017-08-19 11:33:50 -0400 (Sat, 19 Aug 2017)
Log Message:
-----------
fix an impersonation attack against heimdal.
Modified Paths:
--------------
stable/0.9/crypto/heimdal/lib/krb5/ticket.c
Modified: stable/0.9/crypto/heimdal/lib/krb5/ticket.c
===================================================================
--- stable/0.9/crypto/heimdal/lib/krb5/ticket.c 2017-08-19 15:33:08 UTC (rev 9525)
+++ stable/0.9/crypto/heimdal/lib/krb5/ticket.c 2017-08-19 15:33:50 UTC (rev 9526)
@@ -713,8 +713,8 @@
/* check server referral and save principal */
ret = _krb5_principalname2krb5_principal (context,
&tmp_principal,
- rep->kdc_rep.ticket.sname,
- rep->kdc_rep.ticket.realm);
+ rep->enc_part.sname,
+ rep->enc_part.srealm);
if (ret)
goto out;
if((flags & EXTRACT_TICKET_ALLOW_SERVER_MISMATCH) == 0){
More information about the Midnightbsd-cvs
mailing list