updates regarding https://bugzilla.samba.org/show_bug.cgi?id=14922

author Stefan Metzmacher <metze@samba.org>

Wed, 8 Dec 2021 14:11:54 +0000 (15:11 +0100)

committer Jule Anger <janger@samba.org>

Wed, 8 Dec 2021 14:11:54 +0000 (15:11 +0100)
author Stefan Metzmacher <metze@samba.org>
Wed, 8 Dec 2021 14:11:54 +0000 (15:11 +0100)
committer Jule Anger <janger@samba.org>
Wed, 8 Dec 2021 14:11:54 +0000 (15:11 +0100)
diff --git a/security/CVE-2020-25717.html b/security/CVE-2020-25717.html

index 132142660695bec74d004be60eab047efab230a1..5afd59fa641f9c55a25d7973537cdf73b6a5617f 100644 (file)
--- a/security/CVE-2020-25717.html
+++ b/security/CVE-2020-25717.html
@@ -115,6 +115,11 @@ provided by nss_file, nss_ldap or something similar.
    as before with the patches from bug 14901.
    But note the 'min domain uid' setting may still be required.
  
+[Added 2021-12-08]
+  There was also a regression for standalone setups, which
+  accept authentication from an MIT Kerberos Realm.
+  Fixes are available at https://bugzilla.samba.org/show_bug.cgi?id=14922
+
  ============
  Beyond Samba
  ============
author	Stefan Metzmacher <metze@samba.org>
	Wed, 8 Dec 2021 14:11:54 +0000 (15:11 +0100)
committer	Jule Anger <janger@samba.org>
	Wed, 8 Dec 2021 14:11:54 +0000 (15:11 +0100)