0009351: Race conditions for user contexts after the handover of a session to a new user.

ID	Project	Category	View Status	Date Submitted	Last Update

0009351	10000-002: Security	Spec	public	2024-01-11 00:08	2024-01-11 00:08

Reporter	Randy Armstrong	Assigned To	Paul Hunkar
Priority	normal	Severity	minor	Reproducibility	always
Status	assigned	Resolution	open
Product Version	1.05.03
Target Version	1.05.04 RC1

Summary	0009351: Race conditions for user contexts after the handover of a session to a new user.
Description	Better mitigations: `create a new session for the new credentials, do the higher privilege operation and close the sessions; do not process new requests until activate session completes; any existing requests finish with the current credentials.`
Tags	No tags attached.

Commit Version
Fix Due Date

Date Modified	Username	Field	Change
2024-01-11 00:08	Randy Armstrong	New Issue
2024-01-11 00:08	Randy Armstrong	Status	new => assigned
2024-01-11 00:08	Randy Armstrong	Assigned To	=> Paul Hunkar