[11340] in Kerberos-V5-bugs
Re: [krbdev.mit.edu #6636] Segfault with unused pkinit
daemon@ATHENA.MIT.EDU (Tom Yu via RT)
Tue Jan 12 18:11:46 2010
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Tom Yu via RT" <rt-comment@krbdev.MIT.EDU>
In-Reply-To: <rt-6636@krbdev.mit.edu>
Message-ID: <rt-6636-32256.18.651313209575@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #6636'":;"'AdminCc of krbdev.mit.edu Ticket #6636'":;@MIT.EDU
Date: Tue, 12 Jan 2010 18:11:44 -0500 (EST)
Reply-To: rt-comment@krbdev.MIT.EDU
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
Thanks. This is a known vulnerability, and we have already issued a
patch and advisory. (ticket #6608, MITKRB5-SA-2009-003 CVE-2009-3295)
It will also be fixed in the upcoming 1.7.1 release. As far as we can
tell, it appears to have nothing (directly) to do with pkinit, despite
what you see in your logs.
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
