Bug#677027: AUTH cannot handle a request with an initial-response over 2048 bytes (GSSAPI-related)

Mon Jun 11 08:57:18 UTC 2012

Package: exim4
Version: 4.72-6+squeeze2

2012-06-08 11:32:23 SMTP connection from [172.17.13.11] I=[10.10.0.97]:25 (TCP/IP connection count = 1)
2012-06-08 11:32:23 SMTP syntax error in "AUTH GSSAPI YIIF8gYJKoZIhvc... Kerberos token more than 2048 bytes in length...WYHKGN4D8Uf6Ubgic=" H=pliska.ilport ([127.0.0.1]) [172.17.13.11] I=[10.10.0.97]:25 unrecognized command

This bug is found when 3 conditions are met togeter:
*exim MTA
*GSSAPI AUTH when Kerberos token length is more than 2048 bytes in size
*Thunderbird MUA which sends initial authentication response which overfills command buffer of 2048 bytes in size
this bug is known in exim-dev:

http://bugs.exim.org/show_bug.cgi?id=879
http://www.mail-archive.com/exim-dev@exim.org/msg04547.html

Linux Watson 2.6.32-5-686 #1 SMP Sun May 6 04:01:19 UTC 2012 i686 GNU/Linux
Debian 6.0.5

could You include it in Debian distrib so I shouln't recompile each 
update of exim.
Thanks.
when size is lower than 2048 bytes authentication succedes, dovecot 
authenticates regardless of size of token.

-- 
template message
С Ув. *Дмитрий Феофанов*
ведущий инженер ОППО СИТ ГП ИМТП
тел. моб. *+38 095 279-21-14*
*d.feofanov at imtp.ua
dfeofanov at terminal.pp.ua
*
------------------------------------------------------------------------
*Внимание!* Это письмо может содержать конфиденциальную информацию. Если 
Вы получили это сообщение по ошибке и оно Вам не предназначено, 
убедительная просьба удалить его и уведомить администратора почтового 
сервера СИТ ГП ИМТП по адресу: postmaster at imtp.ua
	Best regards *Dmitry Feofanov*
senior engineer S&D dept, IT, SE SCPoI
cel: *+38 095 279-21-14*
*d.feofanov at imtp.ua <mailto:d.feofanov at imtp.ua>
dfeofanov at terminal.pp.ua <mailto:dfeofanov at terminal.pp.ua> *
------------------------------------------------------------------------
*Attention!* This message may contain confidential information that 
belongs to SE SCPoI. If You received this message by mistake or it’s not 
intended to You, please remove it and write a note to Mail server admin: 
postmaster at imtp.ua <mailto:postmaster at imtp.ua>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-exim4-maintainers/attachments/20120611/47561afc/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4459 bytes
Desc: ���������������������������������� �������������� S/MIME
URL: <http://lists.alioth.debian.org/pipermail/pkg-exim4-maintainers/attachments/20120611/47561afc/attachment-0001.bin>