summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSumit Bose <sbose@redhat.com>2010-01-07 10:26:02 +0100
committerStephen Gallagher <sgallagh@redhat.com>2010-01-11 08:19:20 -0500
commitbdbabe247b454c01a79dbbc108ad4fc9c20065d7 (patch)
treee7711fd7ebab8a8921d03d16dcec60b6fc7ed64d
parent6eac0651b72fb04f48bb3b1a92921bfad318a925 (diff)
downloadsssd-bdbabe247b454c01a79dbbc108ad4fc9c20065d7.tar.gz
sssd-bdbabe247b454c01a79dbbc108ad4fc9c20065d7.tar.xz
sssd-bdbabe247b454c01a79dbbc108ad4fc9c20065d7.zip
Fix return value when offline and TGT is valid
Fixes CVE-2010-0014
-rw-r--r--server/providers/krb5/krb5_auth.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/server/providers/krb5/krb5_auth.c b/server/providers/krb5/krb5_auth.c
index a124371ed..4386a7ede 100644
--- a/server/providers/krb5/krb5_auth.c
+++ b/server/providers/krb5/krb5_auth.c
@@ -939,7 +939,7 @@ static void krb5_resolve_done(struct tevent_req *req)
DEBUG(1, ("pam_add_response failed.\n"));
}
- pam_status = PAM_SUCCESS;
+ pam_status = PAM_AUTHINFO_UNAVAIL;
dp_err = DP_ERR_OFFLINE;
goto done;
}