git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 52dd9f8) | patch
CVE-2022-2031 tests/krb5: Add test that we cannot provide a TGT to kpasswd
authorJoseph Sutton <josephsutton@catalyst.net.nz>
Fri, 10 Jun 2022 07:17:11 +0000 (19:17 +1200)
committerJule Anger <janger@samba.org>
Wed, 27 Jul 2022 10:52:36 +0000 (10:52 +0000)
commitfc03cf9f4547bf8164f61138d0211b866d36a956
tree93a05e6e4d0991c11a6d4d5737cbbad3426c2c79tree
parent52dd9f8f835bc23415ec51dcc344478497e208c3commit | diff
CVE-2022-2031 tests/krb5: Add test that we cannot provide a TGT to kpasswd

The kpasswd service should require a kpasswd service ticket, and
disallow TGTs.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15047
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15049

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andreas Schneider <asn@samba.org>
python/samba/tests/krb5/kpasswd_tests.py diff | blob | history
selftest/knownfail_heimdal_kdc diff | blob | history
selftest/knownfail_mit_kdc diff | blob | history
Samba Shared Repository