From: Tobias Schneider <schneider@synyx.de>
Date: Sun, 19 Nov 2017 17:44:31 +0100
Subject: CVE-2017-8028

Bug-Upstream: https://github.com/spring-projects/spring-ldap/issues/430
Origin: https://github.com/spring-projects/spring-ldap/commit/08e8ae289bbd1b581986c7238604a147119c1336
---
 .../ldap/core/support/DefaultTlsDirContextAuthenticationStrategy.java   | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/dist/module-sources/spring-ldap-core/org/springframework/ldap/core/support/DefaultTlsDirContextAuthenticationStrategy.java b/dist/module-sources/spring-ldap-core/org/springframework/ldap/core/support/DefaultTlsDirContextAuthenticationStrategy.java
index 5697540..9fe144d 100644
--- a/dist/module-sources/spring-ldap-core/org/springframework/ldap/core/support/DefaultTlsDirContextAuthenticationStrategy.java
+++ b/dist/module-sources/spring-ldap-core/org/springframework/ldap/core/support/DefaultTlsDirContextAuthenticationStrategy.java
@@ -36,6 +36,8 @@ public class DefaultTlsDirContextAuthenticationStrategy extends AbstractTlsDirCo
 		ctx.addToEnvironment(Context.SECURITY_AUTHENTICATION, SIMPLE_AUTHENTICATION);
 		ctx.addToEnvironment(Context.SECURITY_PRINCIPAL, userDn);
 		ctx.addToEnvironment(Context.SECURITY_CREDENTIALS, password);
+		// Force reconnect with user credentials
+		ctx.reconnect(null);
 	}
 
 }