On Wed, 22 Jul 2015, Christian Heimes wrote:
On 2015-07-22 20:38, Nathaniel McCallum wrote:
On Wed, 2015-07-22 at 20:34 +0200, Christian Heimes wrote:
On 2015-07-22 20:23, Nathaniel McCallum wrote:
Related: CVE-2015-5159
https://bugzilla.redhat.com/show_bug.cgi?id=1245200
The patch prevents
On Wed, 2015-07-22 at 20:47 +0200, Christian Heimes wrote:
> On 2015-07-22 20:38, Nathaniel McCallum wrote:
> > On Wed, 2015-07-22 at 20:34 +0200, Christian Heimes wrote:
> > > On 2015-07-22 20:23, Nathaniel McCallum wrote:
> > > > Related: CVE-2015-5159
> > >
> > > https://bugzilla.redhat.com/sho
On 2015-07-22 20:38, Nathaniel McCallum wrote:
> On Wed, 2015-07-22 at 20:34 +0200, Christian Heimes wrote:
>> On 2015-07-22 20:23, Nathaniel McCallum wrote:
>>> Related: CVE-2015-5159
>>
>> https://bugzilla.redhat.com/show_bug.cgi?id=1245200
>>
>> The patch prevents a flood attack but I consider m
On Wed, 2015-07-22 at 14:38 -0400, Nathaniel McCallum wrote:
> On Wed, 2015-07-22 at 20:34 +0200, Christian Heimes wrote:
> > On 2015-07-22 20:23, Nathaniel McCallum wrote:
> > > Related: CVE-2015-5159
> >
> > https://bugzilla.redhat.com/show_bug.cgi?id=1245200
> >
> > The patch prevents a flood
On Wed, 2015-07-22 at 20:34 +0200, Christian Heimes wrote:
> On 2015-07-22 20:23, Nathaniel McCallum wrote:
> > Related: CVE-2015-5159
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1245200
>
> The patch prevents a flood attack but I consider more a workaround
> than
> a solution. I'll update k
On 2015-07-22 20:23, Nathaniel McCallum wrote:
> Related: CVE-2015-5159
https://bugzilla.redhat.com/show_bug.cgi?id=1245200
The patch prevents a flood attack but I consider more a workaround than
a solution. I'll update kdcproxy tomorrow.
Christian
signature.asc
Description: OpenPGP digital s
Related: CVE-2015-5159From b9595d34e36d967d57c0f72f26fca40b913c6d5e Mon Sep 17 00:00:00 2001
From: Nathaniel McCallum
Date: Wed, 22 Jul 2015 14:18:16 -0400
Subject: [PATCH] Limit request sizes to /KdcProxy
Related: CVE-2015-5159
---
install/conf/ipa-kdc-proxy.conf.template | 1 +
1 file changed,