MITKRB5-SA-2007-002: KDC, kadmind stack overflow in krb5_klog_syslog [CVE-2007-0957]

Edward Beuerlein ebeuerlein at aol.com
Tue Apr 3 17:44:58 EDT 2007


Mike,
What modifications did you make to your src/lib/kadm5/configure script?
 There is mention in the advisory about making changes to detect
vsnprintf() but I am not exactly sure how to do that.  I am not a
developer but need to patch our kerberos code for these 3 security issues.
-Eddie B.



More information about the Kerberos mailing list