3bf5fef4d3
In _krb5_extract_ticket() the KDC-REP service name must be obtained from encrypted version stored in 'enc_part' instead of the unencrypted version stored in 'ticket'. Use of the unecrypted version provides an opportunity for successful server impersonation and other attacks. Submitted by: hrs Obtained from: Heimdal Security: FreeBSD-SA-17:05.heimdal Security: CVE-2017-11103 |
||
---|---|---|
.. | ||
admin | ||
appl | ||
base | ||
doc | ||
etc | ||
include | ||
kadmin | ||
kcm | ||
kdc | ||
kpasswd | ||
kuser | ||
lib | ||
tools | ||
acinclude.m4 | ||
aclocal.m4 | ||
autogen.sh | ||
ChangeLog | ||
ChangeLog.1998 | ||
ChangeLog.1999 | ||
ChangeLog.2000 | ||
ChangeLog.2001 | ||
ChangeLog.2002 | ||
ChangeLog.2003 | ||
ChangeLog.2004 | ||
ChangeLog.2005 | ||
ChangeLog.2006 | ||
compile | ||
config.guess | ||
config.sub | ||
configure | ||
FREEBSD-Xlist | ||
install-sh | ||
krb5.conf | ||
LICENSE | ||
ltmain.sh | ||
Makefile.am | ||
Makefile.am.common | ||
Makefile.in | ||
missing | ||
NEWS | ||
README |
Heimdal is a Kerberos 5 implementation. For information how to install see <http://www.h5l.org/compile.html>. There are briefer man pages for most of the commands. Bug reports and bugs are appreciated, see more under Bug reports in the manual on how we prefer them: <heimdal-bugs@h5l.org>. For more information see the web-page at <http://www.h5l.org/> or the mailing lists: heimdal-announce@sics.se low-volume announcement heimdal-discuss@sics.se high-volume discussion send a mail to heimdal-announce-request@sics.se and heimdal-discuss-request@sics.se respectively to subscribe.