MITKRB5-SA-2003-001: Multiple vulnerabilities in old releases of MIT Kerberos

Steve Langasek vorlon at
Wed Jan 29 10:14:48 EST 2003

On Wed, Jan 29, 2003 at 10:08:11AM -0200, Andreas Hasenack wrote:
> Em Tue, Jan 28, 2003 at 04:58:13PM -0500, Ken Raeburn escreveu:

> > Multiple vulnerabilities have been found in MIT Kerberos 5 releases
> > prior to release 1.2.5.  MIT recommends updating to 1.2.7 if possible.

> Do you realize that version 1.2.7 is still not available to the rest of
> the free world?


Thankfully, other people are allowed to file the export paperwork even if
MIT can't/won't.

Steve Langasek
postmodern programmer
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url :

More information about the krbdev mailing list