[Bug 988520] Re: After failed auth, subsequent auths in same context fail
James Page
james.page at ubuntu.com
Fri Apr 27 11:11:50 UTC 2012
Thanks for taking the time to report this bug in Ubuntu.
As 12.04 is running 1.10+dfsg~beta1 we will need to pickup this fix.
Fix: http://src.mit.edu/fisheye/changelog/krb5/?cs=25822
Upstream bug: http://krbdev.mit.edu/rt/Ticket/Display.html?id=7119
** Bug watch added: krbdev.mit.edu/rt/ #7119
http://krbdev.mit.edu/rt/Ticket/Display.html?id=7119
** Changed in: krb5 (Ubuntu)
Status: New => Confirmed
** Changed in: krb5 (Ubuntu)
Importance: Undecided => Medium
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to krb5 in Ubuntu.
https://bugs.launchpad.net/bugs/988520
Title:
After failed auth, subsequent auths in same context fail
Status in “krb5” package in Ubuntu:
Incomplete
Status in “krb5” package in Debian:
Unknown
Bug description:
MIT Kerberos 1.10 (including pre-releases and betas) exposed a bug in
the tracking of preauth mechanisms such that, if an authentication
fails after preauth was requested, all subsequent preauth-required
authentications in the same Kerberos context will also fail.
This breaks password change when credentials have expired, and also
breaks try_first_pass functionality in Kerberos PAM modules.
Upstream has fixed this problem in their mainline with commit 25822.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/krb5/+bug/988520/+subscriptions
More information about the foundations-bugs
mailing list