Bug 1039955 - [GSS] (6.3.0) Upgrade JBoss Negotiation from 2.2.6.Final-redhat-1 to 2.2.7
Summary: [GSS] (6.3.0) Upgrade JBoss Negotiation from 2.2.6.Final-redhat-1 to 2.2.7
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: JBoss Enterprise Application Platform 6
Classification: JBoss
Component: Security
Version: 6.2.0
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: DR1
: EAP 6.3.0
Assignee: Darran Lofthouse
QA Contact: Josef Cacek
Russell Dickenson
URL:
Whiteboard:
Depends On: 1065476
Blocks: 1065513
TreeView+ depends on / blocked
 
Reported: 2013-12-10 12:18 UTC by Tom Fonteyne
Modified: 2014-06-28 15:37 UTC (History)
8 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2014-06-28 15:37:49 UTC
Type: Component Upgrade
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Bugzilla 1039989 0 unspecified CLOSED SPNEGOLoginModule does not always respect removeRealmFromPrincipal 2021-02-22 00:41:40 UTC
Red Hat Bugzilla 1065476 0 unspecified CLOSED [GSS] (6.3.0) AdvancedLdap login module does not handle a user that has a slash character in the uid 2021-02-22 00:41:40 UTC
Red Hat Issue Tracker SECURITY-772 0 Minor Resolved SPNEGOLoginModule does not always respect removeRealmFromPrincipal 2017-06-14 14:15:09 UTC
Red Hat Issue Tracker SECURITY-795 0 Major Resolved AdvancedLdap login module does not handle a user that has a slash character in the uid 2017-06-14 14:15:08 UTC

Internal Links: 1039989 1040008

Description Tom Fonteyne 2013-12-10 12:18:24 UTC 
https://issues.jboss.org/browse/SECURITY-772

needs to be included in EAP 6.3, hence upgrading Negotiation to 2.2.7 is required.
Comment 1 Anil Saldhana 2014-02-03 15:15:04 UTC 
Darran - please advice.
Comment 2 Derek Horton 2014-02-14 18:24:42 UTC 
The fix for the following bug needs to be included in EAP 6.3

https://bugzilla.redhat.com/show_bug.cgi?id=1065476
https://issues.jboss.org/browse/SECURITY-795
Comment 3 JBoss JIRA Server 2014-02-19 19:11:33 UTC 
Darran Lofthouse <darran.lofthouse> updated the status of jira SECURITY-795 to Resolved
Comment 4 FIlip Bogyai 2014-03-04 12:46:58 UTC 
Verified in EAP 6.3.0.DR1
Note You need to log in before you can comment on or make changes to this bug.