On Tue, Oct 05, 2010 at 10:09:13PM -0400, Sam Hartman wrote: > This bug tracks a DOS in krb5-kdc greater than version 1.8. I'll upload > the official patch tomorrow. > > MIT's advisory talks about arbitrary code execution and other attacks; > I'm dubious about how practical these are based on how the code is built > in Debian, but it's easier to fix promptly than to analyze.
I can confirm that the patch from upstream applies and appears to work fine on our 1.8.3+dfsg-1 based package backported to lenny. Cheers, Dominic. -- Dominic Hargreaves, Systems Development and Support Team Computing Services, University of Oxford
signature.asc
Description: Digital signature
