[Midnightbsd-cvs] src [9527] trunk/crypto/heimdal/lib/krb5/ticket.c: fix an impersonation attack against heimdal.
laffer1 at midnightbsd.org
laffer1 at midnightbsd.org
Sat Aug 19 11:34:03 EDT 2017
Revision: 9527
http://svnweb.midnightbsd.org/src/?rev=9527
Author: laffer1
Date: 2017-08-19 11:34:03 -0400 (Sat, 19 Aug 2017)
Log Message:
-----------
fix an impersonation attack against heimdal.
Modified Paths:
--------------
trunk/crypto/heimdal/lib/krb5/ticket.c
Modified: trunk/crypto/heimdal/lib/krb5/ticket.c
===================================================================
--- trunk/crypto/heimdal/lib/krb5/ticket.c 2017-08-19 15:33:50 UTC (rev 9526)
+++ trunk/crypto/heimdal/lib/krb5/ticket.c 2017-08-19 15:34:03 UTC (rev 9527)
@@ -713,8 +713,8 @@
/* check server referral and save principal */
ret = _krb5_principalname2krb5_principal (context,
&tmp_principal,
- rep->kdc_rep.ticket.sname,
- rep->kdc_rep.ticket.realm);
+ rep->enc_part.sname,
+ rep->enc_part.srealm);
if (ret)
goto out;
if((flags & EXTRACT_TICKET_ALLOW_SERVER_MISMATCH) == 0){
More information about the Midnightbsd-cvs
mailing list