=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/errata34.html,v retrieving revision 1.10 retrieving revision 1.11 diff -c -r1.10 -r1.11 *** www/errata34.html 2004/05/30 22:40:51 1.10 --- www/errata34.html 2004/05/31 17:23:05 1.11 *************** *** 59,71 ****

022: SECURITY FIX: May 30, 2004
! A flaw in the Kerberos V kdc(8) server could result in the administrator of a Kerberos realm having the ability to impersonate any principal in any other realm which has established a cross-realm trust with their realm. The flaw is due to inadequate checking of the "transited" field in a Kerberos request. For ! more details see Heimdal's announcement.
022: SECURITY FIX: May 30, 2004
! A flaw in the Kerberos V kdc(8) server could result in the administrator of a Kerberos realm having the ability to impersonate any principal in any other realm which has established a cross-realm trust with their realm. The flaw is due to inadequate checking of the "transited" field in a Kerberos request. For ! more details see Heimdal's announcement.

www@openbsd.org !
$OpenBSD: errata34.html,v 1.10 2004/05/30 22:40:51 beck Exp $ --- 372,378 ----

www@openbsd.org !
$OpenBSD: errata34.html,v 1.11 2004/05/31 17:23:05 saad Exp $