-
Notifications
You must be signed in to change notification settings - Fork 175
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Contents of 7.8.1 release #1222
base: heimdal-7-8-branch
Are you sure you want to change the base?
Commits on Nov 16, 2022
-
kdc: avoid re-encoding KDC-REQ-BODY
Use --preserve-binary=KDC-REQ-BODY option to ASN.1 compiler to avoid re-encoding KDC-REQ-BODYs for verification in GSS preauth, TGS and PKINIT. [abartlet@samba.org adapted from Heimdal commit ebfd48e by removing references to FAST and GSS-pre-auth. This fixes the Windows 11 22H2 issue with TGS-REQ as seen at https:github.com//issues/1011 and so removes the knownfail file for this test] FIXES: 1011 Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Configuration menu - View commit details
-
Copy full SHA for 4cd3926 - Browse repository at this point
Copy the full SHA 4cd3926View commit details -
lib/ipc: set but unused 'kr' variables
mach_complete_async() and mach_complete_sync() are void functions. Nothing uses the 'kr' value after being set which results in error: variable 'kr' set but not used [-Werror,-Wunused-but-set-variable] Remove the variables.
Configuration menu - View commit details
-
Copy full SHA for 6fa4d05 - Browse repository at this point
Copy the full SHA 6fa4d05View commit details -
kuser/kinit: NO_AFS unused-but-set-variable
When NO_AFS is defined, 'ret' is set but unused resulting in a build failure on macOS. error: variable 'ret' set but not used [-Werror,-Wunused-but-set-variable
Configuration menu - View commit details
-
Copy full SHA for 3c9019d - Browse repository at this point
Copy the full SHA 3c9019dView commit details -
lib/krb5: fix _krb5_get_int64 on 32-bit systems
On systems where 'unsigned long' is 32-bits and the 'size' parameter is set to 8 and the bytes are: 0x78 0x00 0x00 0x00 0x00 0x00 0x00 0x00 When 'i' becomes 4 'v' will be 0 again. As 'unsigned long' is only able to hold 4 bytes. Change the type of 'v' from 'unsigned long' to 'uint64_t' which matches the type of the output parameter 'value'. (cherry picked from commit 9d1bfab) Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Ralph Boehme <slow@samba.org> CVE: CVE-2022-42898 Samba-BUG: https://bugzilla.samba.org/show_bug.cgi?id=15203
Configuration menu - View commit details
-
Copy full SHA for 5e2e89b - Browse repository at this point
Copy the full SHA 5e2e89bView commit details
Commits on Nov 17, 2022
-
lib/krb5: krb5_pac_parse mem leak if pac_header_size failure
48 byte memory leak from krb5_pac_parse() each time pac_header_size() fails.
Configuration menu - View commit details
-
Copy full SHA for f6b0433 - Browse repository at this point
Copy the full SHA f6b0433View commit details -
kdc: Check generate_pac() return code
If the function fails, we should not issue a ticket missing the PAC. (cherry picked from commit 05e589d)
Configuration menu - View commit details
-
Copy full SHA for 28daf24 - Browse repository at this point
Copy the full SHA 28daf24View commit details
Commits on Dec 13, 2022
-
roken: do not override system network address functions
Roken functions rk_copyhostent(), rk_freeaddrinfo(), rk_freehostent() rk_getaddrinfo(), rk_getipnodebyaddr(), rk_getipnodebyname(), and rk_getnameinfo() should never be built without the "rk_" prefix. Doing so overrides the system provided functions of the same name when they exist. (cherry picked from commit 7b3a993)
Configuration menu - View commit details
-
Copy full SHA for e4fa0db - Browse repository at this point
Copy the full SHA e4fa0dbView commit details
Commits on Jan 13, 2024
-
ipropd_slave: open hdb around kadm5_log_init in case recovery needed
log_init in the event a log is found will do recovery. kadm5_log_replay will call methods which expect an hdb_db to be set but without this none is
Configuration menu - View commit details
-
Copy full SHA for d2faa38 - Browse repository at this point
Copy the full SHA d2faa38View commit details -
kadm5: Added kadm_log_init_recover
This takes care of opening and closing the database for use with log possible recovery, without immediate intent to keep the database open for one or more changes. This simplifies code in kadmin/load.c and lib/kadm5/ipropd_slave.c.
Configuration menu - View commit details
-
Copy full SHA for d60d2ea - Browse repository at this point
Copy the full SHA d60d2eaView commit details -
Configuration menu - View commit details
-
Copy full SHA for cd4f7c9 - Browse repository at this point
Copy the full SHA cd4f7c9View commit details -
hcrypto: Don't test rc2 nor rc4 (OS X)
This is just for 7.8.1. Do not pull this into master.
Configuration menu - View commit details
-
Copy full SHA for f136efa - Browse repository at this point
Copy the full SHA f136efaView commit details -
Configuration menu - View commit details
-
Copy full SHA for f8c3a03 - Browse repository at this point
Copy the full SHA f8c3a03View commit details -
Configuration menu - View commit details
-
Copy full SHA for 7464768 - Browse repository at this point
Copy the full SHA 7464768View commit details -
Configuration menu - View commit details
-
Copy full SHA for 3e7bfff - Browse repository at this point
Copy the full SHA 3e7bfffView commit details -
Configuration menu - View commit details
-
Copy full SHA for 61198c5 - Browse repository at this point
Copy the full SHA 61198c5View commit details -
Configuration menu - View commit details
-
Copy full SHA for 191d1d4 - Browse repository at this point
Copy the full SHA 191d1d4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 1b4565a - Browse repository at this point
Copy the full SHA 1b4565aView commit details