Salut, Tonnerre,
On Sat, 7 Jun 2008 18:36:07 +0000 (UTC), Tonnerre Lombard wrote:
> Log Message:
> Add security patches for 3 Kerberos vulnerabilities:
> - telnetd username and environment sanitizing vulnerabilities ("-f
> root") as described in MIT Kerberos advisory 2007-001.
> - krb5_klog_syslog() problems with overly long log strings as
> described in MIT Kerberos advisory 2007-002.
> - GSS API kg_unseal_v1() double free vulnerability as described in
> the MIT Kerberos advisory 2007-003.
Hrm, it seems that there are patches missing so now the whole thing
lacks a function; I'm going to inspect. Unfortunately I noticed this
after a make clean...
Tonnerre
Attachment:
signature.asc
Description: PGP signature