diff options
author | Stefan Metzmacher <metze@samba.org> | 2016-11-22 17:08:46 +0100 |
---|---|---|
committer | Stefan Metzmacher <metze@samba.org> | 2016-12-20 07:51:14 +0100 |
commit | ab25cdfa9dd071652985eb9ab98255cda3c3de57 (patch) | |
tree | 14c31f6f9ba7ca00be6cd27eb887bf91ed6e10e3 /source4/heimdal | |
parent | 6459543b5a4782eeac5d78290918cced7de4790f (diff) | |
download | samba-ab25cdfa9dd071652985eb9ab98255cda3c3de57.tar.gz |
CVE-2016-2126: auth/kerberos: only allow known checksum types in check_pac_checksum()
aes based checksums can only be checked with the
corresponding aes based keytype.
Otherwise we may trigger an undefined code path
deep in the kerberos libraries, which can leed to
segmentation faults.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=12446
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Diffstat (limited to 'source4/heimdal')
0 files changed, 0 insertions, 0 deletions