Updating link to change in openSUSE:Factory/krb5 revision 48.0

OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=03eeb0c694a7c98f62758afbaf724d78
2010-03-25 23:13:31 +00:00
parent 2c72bcf882
commit 527022b424
8 changed files with 449 additions and 3 deletions
--- a/krb5.changes
+++ b/krb5.changes
@@ -1,3 +1,25 @@
+-------------------------------------------------------------------
+Tue Mar 23 14:32:41 CET 2010 - mc@suse.de
+
+- fix a bug where an unauthenticated remote attacker could cause
+  a GSS-API application including the Kerberos administration
+  daemon (kadmind) to crash.
+  CVE-2010-0628, MITKRB5-SA-2010-002 (bnc#582557) 
+
+-------------------------------------------------------------------
+Tue Mar 23 12:33:26 CET 2010 - mc@suse.de
+
+- add post 1.8 fixes
+  * Add IPv6 support to changepw.c
+  * fix two problems in kadm5_get_principal mask handling 
+  * Ignore improperly encoded signedpath AD elements
+  * handle NT_SRV_INST in service principal referrals
+  * dereference options while checking 
+    KRB5_GET_INIT_CREDS_OPT_CHG_PWD_PRMPT
+  * Fix the kpasswd fallback from the ccache principal name
+  * Document the ticket_lifetime libdefaults setting
+  * Change KRB5_AUTHDATA_SIGNTICKET from 142 to 512
+
 -------------------------------------------------------------------
 Thu Mar  4 10:42:29 CET 2010 - mc@suse.de