Skip navigation



WebAuth 4.2.2 Announcement

The ITS WebAuth team is pleased (but somewhat chagrined) to announce Stanford WebAuth 4.2.2. This is a bug-fix release correcting two more bugs introduced in 4.2.0: an error in an underlying Perl module that broke WebLogin's handling of proxy cookies, and an error in cleaning up Kerberos contexts after storing delegated credentials that would cause a segfault in Apache.

All users of the WebLogin component of WebAuth 4.2.x or who are using mod_webauth 4.2.x with delegated credentials should upgrade to this release.

For documentation and downloads of WebAuth 4.2.2, see:


New Debian packages built against Apache 2.4 have been uploaded to Debian experimental.

The user-visible changes in this release are:

  • Fix WebKDC::WebRequest error introduced in 4.2.0 that broke WebLogin functionality.

  • Fix Kerberos context cleanup bug after storing delegated credentials in a file cache, introduced in 4.2.0. This bug would cause segfaults in the child Apache process after completion of the request.

Last modified Friday, 12-Dec-2014 02:31:12 PM

Stanford University Home Page