git.samba.org / nivanova / samba-autobuild / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ee30821) | patch
CVE-2016-2125: s3:gse: avoid using GSS_C_DELEG_FLAG
authorStefan Metzmacher <metze@samba.org>
Wed, 23 Nov 2016 10:42:59 +0000 (11:42 +0100)
committerStefan Metzmacher <metze@samba.org>
Tue, 20 Dec 2016 06:51:14 +0000 (07:51 +0100)
commitf52ca0cbb6412c1d3abc5dc9983b0493ef915a3f
tree22e729d2763b08346211088b87fbfa4b164bc3e6tree
parentee30821ecaff86f9f62da48c8a0d154cc118f058commit | diff
CVE-2016-2125: s3:gse: avoid using GSS_C_DELEG_FLAG

We should only use GSS_C_DELEG_POLICY_FLAG in order to let
the KDC decide if we should send delegated credentials to
a remote server.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=12445

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Alexander Bokovoy <ab@samba.org>
Reviewed-by: Simo Sorce <idra@samba.org>
source3/librpc/crypto/gse.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.