View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0007188 | Kali Linux | Kali Package Bug | public | 2021-05-12 16:34 | 2021-08-12 17:15 |
Reporter | bugreporter4us | Assigned To | arnaudr | ||
Priority | normal | Severity | major | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Summary | 0007188: cifs-utils version 2:6.11-3 breaks krb5 mounts | ||||
Description | This morning after updating against the kali.download mirror, cifs-utils was upgraded from 2:6.11-1 to 2:6.11-3. Following this upgrade, my mount for a SMB3 share using krb5i authentication failed. This was reproduced by one other person after updating. I enabled debuging in my krb5 conf and these are the following results:
This is verified as a problem with cifs-utils vs krb5 by a successful service ticket request using kvno. The mount just does not work. | ||||
Steps To Reproduce | Request a TGT against a KDC | ||||
Additional Information | It appears that this package has not yet hit the berkeley repo. I updated from kali.download. | ||||
I was wrong about the berkeley repo. Package appears everywhere. |
|
I think likely this is the same issue reported on a newer version on Arch. I imagine the same patch was applied to mitigate CVE 2021-20208 |
|
This should really be reported to Debian since we are integrating the package straight from Debian. I don't see any report yet in https://bugs.debian.org/cgi-bin/pkgreport.cgi?archive=0;dist=unstable;ordering=normal;repeatmerged=0;src=cifs-utils so the report would certainly help. In particular since you pinpointed the regression to a security update. |
|
The relevant Debian bug report is: |
|
As of last night the debian bug has been updated with a fixed package. The update is available in the previously mentioned link. Additionally, the merge request for the package is here: https://salsa.debian.org/samba-team/cifs-utils/-/merge_requests/8 |
|
No-one merged this patch in Debian yet unfortunately: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989080#25 |
|
Yeah, I've been trying to keep tabs on it. Seems like a large issue that's going entirely untouched. Is there anything we can do in the Kali community to push this forward? As I understand it the fix is there and ready, just needs to be merged... |
|
Not much we can do I'm afraid... |
|
The last update of cifs-utils fixed this issue. |
|
This is great news! Thanks for reporting until the end :) I'm closing the issue now. |
|
Date Modified | Username | Field | Change |
---|---|---|---|
2021-05-12 16:34 | bugreporter4us | New Issue | |
2021-05-12 17:26 | bugreporter4us | Note Added: 0014545 | |
2021-05-14 23:50 | bugreporter4us | Note Added: 0014548 | |
2021-05-17 16:27 | rhertzog | Note Added: 0014561 | |
2021-05-26 23:59 | bugreporter4us | Note Added: 0014590 | |
2021-06-18 15:22 | bugreporter4us | Note Added: 0014716 | |
2021-06-30 08:49 | g0tmi1k | Priority | high => normal |
2021-07-16 08:44 | arnaudr | Note Added: 0014927 | |
2021-07-19 15:55 | bugreporter4us | Note Added: 0014938 | |
2021-07-22 02:56 | arnaudr | Note Added: 0014943 | |
2021-08-03 14:46 | bugreporter4us | Note Added: 0014966 | |
2021-08-12 17:12 | arnaudr | Note Added: 0014996 | |
2021-08-12 17:15 | arnaudr | Assigned To | => arnaudr |
2021-08-12 17:15 | arnaudr | Status | new => closed |
2021-08-12 17:15 | arnaudr | Resolution | open => fixed |