IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
23336160f21611942512e7b1996051d34817873d
freeipa/daemons
History
Alexander Bokovoy 23336160f2 ipa-kdb: add support for PAC_UPN_DNS_INFO_EX 
CVE-2020-25721 mitigation: KDC must provide the new HAS_SAM_NAME_AND_SID
buffer with sAMAccountName and ObjectSID values associated with the
principal.

The mitigation only works if NDR library supports the
PAC_UPN_DNS_INFO_EX buffer type. In case we cannot detect it at compile
time, a warning will be displayed at configure stage.

Fixes: https://pagure.io/freeipa/issue/9031

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
Reviewed-by: Rob Crittenden <rcritten@redhat.com>
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
2021-11-10 15:00:27 -05:00
..
dnssec
dnssec: concurrency issue when disabling old replica key
2021-03-09 16:52:38 +01:00
ipa-kdb
ipa-kdb: add support for PAC_UPN_DNS_INFO_EX
2021-11-10 15:00:27 -05:00
ipa-otpd
ipa-otpd: handle LDAP timeout in a better way
2021-04-23 11:13:36 +03:00
ipa-sam
ipa-sam: return NetBIOS domain name instead of DNS one
2021-02-02 09:41:00 +02:00
ipa-slapi-plugins
extdom: return LDAP_NO_SUCH_OBJECT if domains differ
2021-09-01 13:45:25 -04:00
ipa-version.h.in
Build: move version handling from Makefile to configure
2016-11-09 13:08:32 +01:00
Makefile.am
build: Unify compiler warning flags used
2021-01-15 14:11:56 +01:00