version 1.43, 2013/10/26 15:21:13 |
version 1.44, 2014/02/27 17:26:45 |
|
|
<a href="errata51.html">5.1</a>, |
<a href="errata51.html">5.1</a>, |
<a href="errata52.html">5.2</a>, |
<a href="errata52.html">5.2</a>, |
<a href="errata53.html">5.3</a>, |
<a href="errata53.html">5.3</a>, |
<a href="errata54.html">5.4</a>. |
<a href="errata54.html">5.4</a>, |
|
<a href="errata55.html">5.5</a>. |
<br> |
<br> |
<hr> |
<hr> |
|
|
|
|
<p> |
<p> |
<li><a name="isakmpd"></a> |
<li><a name="isakmpd"></a> |
<font color="#009000"><strong>012: SECURITY FIX: June 10, 2004</strong></font><br> |
<font color="#009000"><strong>012: SECURITY FIX: June 10, 2004</strong></font><br> |
As |
As |
<a href="http://seclists.org/lists/fulldisclosure/2004/Jun/0191.html">disclosed</a> |
<a href="http://seclists.org/lists/fulldisclosure/2004/Jun/0191.html">disclosed</a> |
by Thomas Walpuski |
by Thomas Walpuski |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&apropos=0&sektion=8&manpath=OpenBSD+Current&arch=i386&format=html">isakmpd(8)</a> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&apropos=0&sektion=8&manpath=OpenBSD+Current&arch=i386&format=html">isakmpd(8)</a> |
|
|
has established a cross-realm trust with their realm. The flaw is due to |
has established a cross-realm trust with their realm. The flaw is due to |
inadequate checking of the "transited" field in a Kerberos request. For |
inadequate checking of the "transited" field in a Kerberos request. For |
more details see <a href="http://www.pdc.kth.se/heimdal/advisory/2004-04-01/"> |
more details see <a href="http://www.pdc.kth.se/heimdal/advisory/2004-04-01/"> |
Heimdal's announcement</a>. |
Heimdal's announcement</a>. |
<br> |
<br> |
<a |
<a |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/009_kerberos.patch"> |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/009_kerberos.patch"> |
|
|
makes xdm create the chooser socket even if xdmcp is disabled in |
makes xdm create the chooser socket even if xdmcp is disabled in |
xdm-config, by setting requestPort to 0. See |
xdm-config, by setting requestPort to 0. See |
<a href="http://bugs.xfree86.org/show_bug.cgi?id=1376">XFree86 |
<a href="http://bugs.xfree86.org/show_bug.cgi?id=1376">XFree86 |
bugzilla</a> for details. |
bugzilla</a> for details. |
<br> |
<br> |
<a |
<a |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/008_xdm.patch"> |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/008_xdm.patch"> |
|
|
<br> |
<br> |
|
|
<hr> |
<hr> |
<a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> |
<a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> |
<a href="mailto:www@openbsd.org">www@openbsd.org</a> |
<a href="mailto:www@openbsd.org">www@openbsd.org</a> |
<br><small>$OpenBSD$</small> |
<br><small>$OpenBSD$</small> |
|
|