d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
feeaec18d4
freebsd-skq/crypto/heimdal/lib
History
Xin LI 49426905b3 MFV r320905: Import upstream fix for CVE-2017-11103. 
In _krb5_extract_ticket() the KDC-REP service name must be obtained from
encrypted version stored in 'enc_part' instead of the unencrypted version
stored in 'ticket'.  Use of the unecrypted version provides an
opportunity for successful server impersonation and other attacks.

Submitted by:	hrs
Obtained from:	Heimdal
Security:	FreeBSD-SA-17:05.heimdal
Security:	CVE-2017-11103
2017-07-12 07:19:06 +00:00
..
asn1
com_err
gssapi Apply patch from upstream Heimdal for encoding fix 2013-12-13 03:09:29 +00:00
hdb
heimdal
hx509 Remove duplicate symbol from libhx509 version-script.map 2016-08-22 18:50:57 +00:00
ipc NO_MAN= has been deprecated in favor of MAN= for some time, go ahead 2014-04-13 05:21:56 +00:00
kadm5 Have the ipropd-master listen on an IPv6 socket in addition to an IPv4 2013-05-18 18:01:21 +00:00
kafs
krb5 MFV r320905: Import upstream fix for CVE-2017-11103. 2017-07-12 07:19:06 +00:00
ntlm
roken Renumber copyright clause 4 2017-02-28 23:42:47 +00:00
sl In crypto/heimdal/lib/sl/slc-lex.l, don't define YY_NO_INPUT, since 2012-11-14 18:49:03 +00:00
sqlite
vers
wind
Makefile.am NO_MAN= has been deprecated in favor of MAN= for some time, go ahead 2014-04-13 05:21:56 +00:00
Makefile.in