| version 1.43, 2013/10/26 15:21:13 |
version 1.44, 2014/02/27 17:26:45 |
|
|
| <a href="errata51.html">5.1</a>, |
<a href="errata51.html">5.1</a>, |
| <a href="errata52.html">5.2</a>, |
<a href="errata52.html">5.2</a>, |
| <a href="errata53.html">5.3</a>, |
<a href="errata53.html">5.3</a>, |
| <a href="errata54.html">5.4</a>. |
<a href="errata54.html">5.4</a>, |
| |
<a href="errata55.html">5.5</a>. |
| <br> |
<br> |
| <hr> |
<hr> |
| |
|
|
|
| <p> |
<p> |
| <li><a name="isakmpd"></a> |
<li><a name="isakmpd"></a> |
| <font color="#009000"><strong>012: SECURITY FIX: June 10, 2004</strong></font><br> |
<font color="#009000"><strong>012: SECURITY FIX: June 10, 2004</strong></font><br> |
| As |
As |
| <a href="http://seclists.org/lists/fulldisclosure/2004/Jun/0191.html">disclosed</a> |
<a href="http://seclists.org/lists/fulldisclosure/2004/Jun/0191.html">disclosed</a> |
| by Thomas Walpuski |
by Thomas Walpuski |
| <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&apropos=0&sektion=8&manpath=OpenBSD+Current&arch=i386&format=html">isakmpd(8)</a> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&apropos=0&sektion=8&manpath=OpenBSD+Current&arch=i386&format=html">isakmpd(8)</a> |
|
|
| has established a cross-realm trust with their realm. The flaw is due to |
has established a cross-realm trust with their realm. The flaw is due to |
| inadequate checking of the "transited" field in a Kerberos request. For |
inadequate checking of the "transited" field in a Kerberos request. For |
| more details see <a href="http://www.pdc.kth.se/heimdal/advisory/2004-04-01/"> |
more details see <a href="http://www.pdc.kth.se/heimdal/advisory/2004-04-01/"> |
| Heimdal's announcement</a>. |
Heimdal's announcement</a>. |
| <br> |
<br> |
| <a |
<a |
| href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/009_kerberos.patch"> |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/009_kerberos.patch"> |
|
|
| makes xdm create the chooser socket even if xdmcp is disabled in |
makes xdm create the chooser socket even if xdmcp is disabled in |
| xdm-config, by setting requestPort to 0. See |
xdm-config, by setting requestPort to 0. See |
| <a href="http://bugs.xfree86.org/show_bug.cgi?id=1376">XFree86 |
<a href="http://bugs.xfree86.org/show_bug.cgi?id=1376">XFree86 |
| bugzilla</a> for details. |
bugzilla</a> for details. |
| <br> |
<br> |
| <a |
<a |
| href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/008_xdm.patch"> |
href="http://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/008_xdm.patch"> |
|
|
| <br> |
<br> |
| |
|
| <hr> |
<hr> |
| <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> |
<a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a> |
| <a href="mailto:www@openbsd.org">www@openbsd.org</a> |
<a href="mailto:www@openbsd.org">www@openbsd.org</a> |
| <br><small>$OpenBSD$</small> |
<br><small>$OpenBSD$</small> |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to errata35.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www