pool/libheimdal
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
libheimdal/heimdal-7.5.0-patched.tar.bz2
Jörg Lorenzen 544cfdcdbc Accepting request 560558 from home:enzokiel:branches:network 
- Update to version 7.5.0
  - Security
    - Fix CVE-2017-17439, which is a remote denial of service
      vulnerability:
      In Heimdal 7.1 through 7.4, remote unauthenticated attackers
      are able to crash the KDC by sending a crafted UDP packet
      containing empty data fields for client name or realm.
  - Bug fixes
    - Handle long input lines when reloading database dumps.
    - In pre-forked mode (default on Unix), correctly clear the
      process ids of exited children, allowing new child processes
      to replace the old.
    - Fixed incorrect KDC response when no-cross realm TGT exists,
      allowing client requests to fail quickly rather than time
      out after trying to get a correct answer from each KDC.
- Fixed heimdal-patched.diff.
- Removed Avoid_NULL_structure_pointer_member_dereference.patch,
  fixed upstream.

OBS-URL: https://build.opensuse.org/request/show/560558
OBS-URL: https://build.opensuse.org/package/show/network/libheimdal?expand=0&rev=19
2017-12-29 13:46:40 +00:00

4 lines
132 B
Plaintext
Raw Blame History

version https://git-lfs.github.com/spec/v1
oid sha256:2a77570b72566f4dcc67c6d159017eb2baf927995441fea3a872f527e8089328
size 7632037
Reference in New Issue View Git Blame Copy Permalink