Bug#590040: iceweasel: Negotiate auth fails

Alexander Inyukhin shurick at sectorb.msk.ru
Fri Jul 23 05:51:01 UTC 2010


Package: iceweasel
Version: 3.5.11-1
Severity: normal
Tags: patch


Calculation of length of base64-encoded string in negotiate challenge
is performed before stripping trailing '=' characters.
In most cases this leads to passing extra byte to gss_init_sec_context,
and it causes negotiate auth to fail.

This code is located in function nsHttpNegotiateAuth::GenerateCredentials
from file extensions/auth/nsHttpNegotiateAuth.cpp around notions of bug 230351.

The bug is already fixed in branch 3.6 of firefox and in the iceweasel from experimental.
A proposed fix is included in the patchset
http://hg.mozilla.org/mozilla-central/rev/275225278550

A related to the patchset firefox bug is 520607, but I do not have a bugzilla
account there to check what this bug is really about.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: http-negotiate-auth.diff
Type: text/x-diff
Size: 889 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-mozilla-maintainers/attachments/20100723/911e520f/attachment.diff>


More information about the pkg-mozilla-maintainers mailing list