RT/krbdev.mit.edu: Ticket #4126 fix MITKRB5-SA-2006-001: multiple local privilege escalation vulnerabilities

RT/krbdev.mit.edu: Ticket #4126 fix MITKRB5-SA-2006-001: multiple local privilege escalation vulnerabilities

Signed in as guest.
[Logout]

[Home]

[Search]

[Configuration]

[Display]

[History]

[Basics]

[Dates]

[People]

[Links]

[Jumbo]

The Basics

Id
4126

Status
resolved

Worked
0 min

Priority
0/0

Queue
krb5

Keyword Selections

Component
Version_reported
Version_Fixed	1.4.4
Target_Version	1.4.4
Tags	pullup

Relationships

Depends on:

Depended on by:

Parents:

Children:

Refers to:

4125: (tlyu) fix MITKRB5-SA-2006-001: multiple local privilege escalation vulnerabilities [resolved]

Referred to by:

Dates

Created:	Tue Aug 8 15:38:05 2006
Starts:	Not set
Started:	Tue Aug 8 16:15:20 2006
Last Contact:	Not set
Due:	Not set
Updated:	Tue Aug 8 16:15:23 2006 by tlyu

People

Owner
tlyu
Requestors
tlyu@mit.edu
Cc

AdminCc

More about Tom Yu

Comments about this user:
No comment entered about this user
This user's 25 highest priority tickets:

6204: meta-ticket for tracking Apple patches (open)
1149: KDC client lockout for DISALLOW_ALL_TIX or expiration (new)
1247: rpc unit tests need real synchronization (open)
1348: sketchy uses of longjmp in util/ss/listen.c (new)
1479: kdc.conf should allow KDC directory re-homing (new)
1685: consider calling remove_error_table() in krb5_free_context() (new)
2644: fakeka.c should use life_to_time/time_to_life (new)
2934: document shared lib build requirements (new)
2937: GSSAPI authorization data export (open)
2938: support 64-bit Windows (open)
3775: krb5_gss_accept_sec_context should handle inconsistent mutual auth requests (open)
4740: cccursor backend for MSLSA (new)
5531: SPNEGO acc_ctx_call_acc should only call gssint_get_mech_type for 1st token (new)
5627: handle off-path TGT referrals in krb5_get_cred_from_kdc() [rdar 3679887] (open)
6034: rework gic_opt_ext to be more portable (open)
6205: IP_RECVDSTADDR support for kpasswd server (open)
6212: Apple patch for Common Crypto (new)
6213: Apple patch to use pidfile (FreeBSD) for daemons (new)
6228: Apple patch: KDC notify password server (new)
6229: Apple-specific manpage pathname fixes (new)
6230: Apple Seatbelt support for kadmind and KDC (new)
6232: Apple manpage fix to delete reference to Kerberos.app (new)
6233: Apple patch to instal newsyslog config (new)
6234: Apple config file support for password server (new)
6235: install target for KerberosLite (new)

History

Display mode: [Brief headers] [Full headers]

Tue Aug 8 15:38:07 2006	tlyu - Ticket created
Subject: fix MITKRB5-SA-2006-001: multiple local privilege escalation This is a separate ticket for the 1.4 release branch.		Download (untitled) 53b
Tue Aug 8 15:38:09 2006	tlyu - Ticket 4126 RefersTo ticket 4125.
Tue Aug 8 16:15:20 2006	tlyu - Status changed from new to resolved
Tue Aug 8 16:15:21 2006	tlyu - Version_Fixed 1.4.4 added
Tue Aug 8 16:15:22 2006	tlyu - Correspondence added
From: tlyu@mit.edu Subject: SVN Commit pull up r18420 from trunk r18420@cathode-dark-space: tlyu \| 2006-08-08 15:26:40 -0400 ticket: new subject: fix MITKRB5-SA-2006-001: multiple local privilege escalation vulnerabilities target_version: 1.5.1 tags: pullup * src/appl/gssftp/ftpd/ftpd.c (getdatasock, passive): * src/appl/bsd/v4rcp.c (main): * src/appl/bsd/krcp.c (main): * src/appl/bsd/krshd.c (doit): * src/appl/bsd/login.c (main): * src/clients/ksu/main.c (sweep_up): * src/lib/krb4/kuserok.c (kuserok): Check return values from setuid() and related functions to avoid privilege escalation vulnerabilities. Fixes MITKRB5-SA-2006-001. [CVE-2006-3083, VU#580124, CVE-2006-3084, VU#401660] Commit By: tlyu Revision: 18422 Changed Files: _U branches/krb5-1-4/ U branches/krb5-1-4/src/appl/bsd/krcp.c U branches/krb5-1-4/src/appl/bsd/krshd.c U branches/krb5-1-4/src/appl/bsd/login.c U branches/krb5-1-4/src/appl/bsd/v4rcp.c U branches/krb5-1-4/src/appl/gssftp/ftpd/ftpd.c U branches/krb5-1-4/src/clients/ksu/main.c U branches/krb5-1-4/src/lib/krb4/kuserok.c		Download (untitled) 1k