MITKRB5-SA-2003-001: Multiple vulnerabilities in old releases of MIT Kerberos
Steve Langasek
vorlon at netexpress.net
Wed Jan 29 10:14:48 EST 2003
On Wed, Jan 29, 2003 at 10:08:11AM -0200, Andreas Hasenack wrote:
> Em Tue, Jan 28, 2003 at 04:58:13PM -0500, Ken Raeburn escreveu:
> > Multiple vulnerabilities have been found in MIT Kerberos 5 releases
> > prior to release 1.2.5. MIT recommends updating to 1.2.7 if possible.
> Do you realize that version 1.2.7 is still not available to the rest of
> the free world?
Try ftp://ftp.br.debian.org/debian/pool/main/k/krb5/krb5_1.2.7.orig.tar.gz,
perhaps.
Thankfully, other people are allowed to file the export paperwork even if
MIT can't/won't.
--
Steve Langasek
postmodern programmer
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://mailman.mit.edu/pipermail/kerberos/attachments/20030129/410122df/attachment.bin
More information about the Kerberos
mailing list