WebAuth 4.2.2 Announcement
The ITS WebAuth team is pleased (but somewhat chagrined) to announce Stanford WebAuth 4.2.2. This is a bug-fix release correcting two more bugs introduced in 4.2.0: an error in an underlying Perl module that broke WebLogin's handling of proxy cookies, and an error in cleaning up Kerberos contexts after storing delegated credentials that would cause a segfault in Apache.
All users of the WebLogin component of WebAuth 4.2.x or who are using mod_webauth 4.2.x with delegated credentials should upgrade to this release.
For documentation and downloads of WebAuth 4.2.2, see:
New Debian packages built against Apache 2.4 have been uploaded to Debian experimental.
The user-visible changes in this release are:
Fix WebKDC::WebRequest error introduced in 4.2.0 that broke WebLogin functionality.
Fix Kerberos context cleanup bug after storing delegated credentials in a file cache, introduced in 4.2.0. This bug would cause segfaults in the child Apache process after completion of the request.