Changes 1.8.4: - pkgsrc - [no description]

diff options

author	adam <adam>	2011-07-08 09:59:28 +0000
committer	adam <adam>	2011-07-08 09:59:28 +0000
commit	cab4edf276c81a1327d8c49869cfc23fb42d9e3f (patch)
tree	0dcf4a0a45ef8f5c03bd015f029d44a1176f126c /filesystems/glusterfs
parent	fd64193fc78d60daa4f1b426b7a3aa3fd2f031f9 (diff)
download	pkgsrc-cab4edf276c81a1327d8c49869cfc23fb42d9e3f.tar.gz

Changes 1.8.4:

This is primarily a bugfix release. Fix vulnerabilities: * KDC uninitialized pointer crash [MITKRB5-SA-2010-006 CVE-2010-1322] * kpropd denial of service [MITKRB5-SA-2011-001 CVE-2010-4022] * KDC denial of service attacks [MITKRB5-SA-2011-002 CVE-2011-0281 CVE-2011-0282 CVE-2011-0283] * KDC double-free when PKINIT enabled [MITKRB5-SA-2011-003 CVE-2011-0284] * kadmind frees invalid pointer [MITKRB5-SA-2011-004 CVE-2011-0285] Interoperability: * Correctly encrypt GSSAPI forwarded credentials using the session key, not a subkey. * Set NT-SRV-INST on TGS principal names as expected by some Windows Server Domain Controllers. * Don't reject AP-REQ messages if their PAC doesn't validate; suppress the PAC instead. * Correctly validate HMAC-MD5 checksums that use DES keys

Diffstat (limited to 'filesystems/glusterfs')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: