Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 621394 (CVE-2017-6594) - <app-crypt/heimdal-7.4.0: bypass of capath policy
Summary: <app-crypt/heimdal-7.4.0: bypass of capath policy
Status: RESOLVED FIXED
Alias: CVE-2017-6594
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard: B4 [noglsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2017-06-10 13:34 UTC by Andrey Ovcharov
Modified: 2018-01-19 14:07 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments
heimdal-7.1.0-CVE-2017-6594.patch (heimdal-7.1.0-CVE-2017-6594.patch,5.96 KB, patch)
2017-06-10 13:44 UTC, Andrey Ovcharov
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Andrey Ovcharov 2017-06-10 13:44:10 UTC
Created attachment 475900 [details, diff]
heimdal-7.1.0-CVE-2017-6594.patch
Comment 2 Kristian Fiskerstrand (RETIRED) gentoo-dev 2017-07-12 11:58:45 UTC
https://github.com/heimdal/heimdal/commit/b1e699103f08d6a0ca46a122193c9da65f6cf837:
 Fix transit path validation CVE-2017-6594

Commit f469fc6 (2010-10-02) inadvertently caused the previous hop realm
to not be added to the transit path of issued tickets.  This may, in
some cases, enable bypass of capath policy in Heimdal versions 1.5
through 7.2.

Note, this may break sites that rely on the bug.  With the bug some
incomplete [capaths] worked, that should not have.  These may now break
authentication in some cross-realm configurations.
Comment 3 Aaron Bauman (RETIRED) gentoo-dev 2018-01-19 14:07:44 UTC
Fix is present in >=7.4.0 source.  

GLSA Vote: No