Bug 52097 - bug in CRAM-MD5 authentication code
bug in CRAM-MD5 authentication code
Product: Red Hat Public Beta
Classification: Retired
Component: libesmtp (Show other bugs)
All Linux
medium Severity medium
: ---
: ---
Assigned To: Bill Nottingham
Depends On:
  Show dependency treegraph
Reported: 2001-08-20 11:01 EDT by Pawel Salek
Modified: 2014-03-16 22:22 EDT (History)
1 user (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2001-08-20 15:23:11 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Pawel Salek 2001-08-20 11:01:42 EDT
Description of problem:
libesmtp-0.8.3 has a bug that makes CRAM-MD5 authentication code useless.
(only LOGIN works).

How reproducible:

Steps to Reproduce:
1.run the test program from the examples directory and watch the output.

Actual Results:  CRAM-MD5 authentication fails even with the right password.

Expected Results:  Authentication should be successful.

Additional info:

This has been acknowledged by the libesmtp's developer Brian Stafford. He
released fixed libesmtp-0.8.4 right away.
See libesmtp-0.8.4 changelog for more details.
Comment 1 Glen Foster 2001-08-20 15:23:05 EDT
We (Red Hat) should really try to fix this before next release.
Comment 2 Bill Nottingham 2001-08-20 15:27:03 EDT
Fixed in 0.8.4-1; thanks for the report!

Note You need to log in before you can comment on or make changes to this bug.