[16793] in Kerberos_V5_Development


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: krb5-1.9.1-beta1 is available

daemon@ATHENA.MIT.EDU (michelle zhao)
Wed May 4 17:47:44 2011

MIME-Version: 1.0
In-Reply-To: <ldvr58qgj86.fsf@cathode-dark-space.mit.edu>
Date: Wed, 4 May 2011 14:45:24 -0700
Message-ID: <BANLkTi=uvRkc0OS5e7iQdTpBQDaGNMP-KA@mail.gmail.com>
From: michelle zhao <michelle.zhao@gmail.com>
To: Tom Yu <tlyu@mit.edu>
Cc: krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu

When will be this out of beta?
It had a bug fix that we need.
thanks,
Michelle
On Mon, Apr 25, 2011 at 1:38 PM, Tom Yu <tlyu@mit.edu> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> MIT krb5-1.9.1-beta1 is now available for download from
>
>         http://web.mit.edu/kerberos/dist/testing.html
>
> The main MIT Kerberos web page is
>
>         http://web.mit.edu/kerberos/
>
> Please send comments to the krbdev list.  The final release will
> probably occur in early May.  The README file contains a more
> extensive list of changes.
>
> Major changes in 1.9.1
> - ----------------------
>
> This is primarily a bugfix release.
>
> * Fix vulnerabilities:
>  ** kpropd denial of service [MITKRB5-SA-2011-001 CVE-2010-4022]
>  ** KDC denial of service attacks [MITKRB5-SA-2011-002
>     CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]
>  ** KDC double-free when PKINIT enabled [MITKRB5-SA-2011-003
>     CVE-2011-0284]
>  ** kadmind frees invalid pointer [MITKRB5-SA-2011-004 CVE-2011-0285]
>
> * Interoperability:
>
>  ** Don't reject AP-REQ messages if their PAC doesn't validate;
>     suppress the PAC instead.
>
>  ** Correctly validate HMAC-MD5 checksums that use DES keys
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.8 (SunOS)
>
> iEYEARECAAYFAk21260ACgkQSO8fWy4vZo5QCQCfbkfkNa5E+lIxAa9zrY0JJiIu
> 5owAoM1syBte2aeCIzKTkPCEsNFZu6U2
> =V7Ha
> -----END PGP SIGNATURE-----
> _______________________________________________
> krbdev mailing list             krbdev@mit.edu
> https://mailman.mit.edu/mailman/listinfo/krbdev
>
_______________________________________________
krbdev mailing list             krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[16793] in Kerberos_V5_Development

Re: krb5-1.9.1-beta1 is available

daemon@ATHENA.MIT.EDU (michelle zhao)Wed May 4 17:47:44 2011

daemon@ATHENA.MIT.EDU (michelle zhao)
Wed May 4 17:47:44 2011