[438] in Best-of-Security
BoS: MIT Kerberos V5 R1.0.2 is released
daemon@ATHENA.MIT.EDU (Aleph One)
Wed Nov 5 03:09:53 1997
Date: Sun, 2 Nov 1997 10:16:58 -0600
Reply-To: Aleph One <aleph1@DFW.NET>
From: Aleph One <aleph1@DFW.NET>
Old-X-Originally-To: To: BUGTRAQ@NETSPACE.ORG
Old-X-Originated-From: From: Aleph One <aleph1@DFW.NET>
Errors-To: best-of-security-request@cyber.com.au
To: best-of-security@cyber.com.au
Resent-From: best-of-security@cyber.com.au
From: tlyu@MIT.EDU (Tom Yu)
Date: Sat, 1 Nov 1997 17:33:42 -0800
Message-ID: <199711020114.UAA02708@tesla-coil.MIT.EDU>
Newsgroups: comp.protocols.kerberos
Approved: darrenr@cyber.com.au
X-Originally-To: To: BUGTRAQ@NETSPACE.ORG
X-Originated-From: From: Aleph One <aleph1@DFW.NET>
The MIT Kerberos Team is proud to announce the availability of MIT
Kerberos V5 Release 1.0.2. This release is a bug-fix release only;
there are no feature enhancements over the 1.0 patchlevel 1 release.
The following bugs were fixed:
* A bug in the gssapi-rpc library that prevents an rpc server from
handling more than two simultaneous connections
* A potential security vulnerability in telnetd that may allow a
remote user to gain root privileges on systems with a broken tgetent()
library function
Getting Kerberos V5 1.0.2
=========================
The simplest way to get the new patchlevel 1 release is via the Web.
Use the following URL:
http://web.mit.edu/network/kerberos-form.html
Alternatively, you may retrieve the release using FTP:
FTP to athena-dist.mit.edu, in /pub/kerberos. Get the file
README.KRB5-1.0.2. It will contain instructions on how to
obtain the 1.0.2 release.
----------
Tom Yu
MIT Information Systems/Kerberos Development Team
