CVS commit: pkgsrc/security/mit-krb5-appl

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/security/mit-krb5-appl
From: "Tim Zingelman" <tez%netbsd.org@localhost>
Date: Fri, 23 Dec 2011 16:44:24 +0000

Module Name:    pkgsrc
Committed By:   tez
Date:           Fri Dec 23 16:44:24 UTC 2011

Modified Files:
        pkgsrc/security/mit-krb5-appl: Makefile distinfo
Added Files:
        pkgsrc/security/mit-krb5-appl/patches: patch-telnet_libtelnet_encrypt.c

Log Message:
Fix for CVE-2011-4862 from FreeBSD

When an encryption key is supplied via the TELNET protocol, its length
is not validated before the key is copied into a fixed-size buffer.

This is a remote root exploit that is being actively exploited in the wild.


To generate a diff of this commit:
cvs rdiff -u -r1.3 -r1.4 pkgsrc/security/mit-krb5-appl/Makefile \
    pkgsrc/security/mit-krb5-appl/distinfo
cvs rdiff -u -r0 -r1.1 \
    pkgsrc/security/mit-krb5-appl/patches/patch-telnet_libtelnet_encrypt.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [pkgsrc-2011Q3] pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: [pkgsrc-2011Q3] pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index