Details
Description
With JDK 242 and above, most of the services are needed to have disableReferrals in some cases this setting at the jvm level does not take effect and inturn some may set the renew_lifetime in krb5.conf to 0m (essentially disabling it). The fix is for kt renewer to handle this scenario.
This patch can be leveraged for CVE-2020-17049.