=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v retrieving revision 1.925 retrieving revision 1.926 diff -u -r1.925 -r1.926 --- www/plus.html 2004/05/30 16:23:12 1.925 +++ www/plus.html 2004/06/03 23:38:49 1.926 @@ -158,7 +158,8 @@ A source code patch is available.
[Applied to stable]
  • Allow symbolic service- and protocol names in isakmpd(8), so e.g. "Protocol=tcp" now works. -
  • Fix a cross-realm trust vulnerability in Kerberos V. Adapted from FreeBSD.
    +
  • SECURITY FIX: A flaw in the Kerberos V kdc(8) server could result in the administrator of a Kerberos realm having the ability to impersonate any principal in any other realm which has established a cross-realm trust with their realm. The flaw is due to inadequate checking of the "transited" field in a Kerberos request. For more details see Heimdal's announcement.
    + A source code patch is available.
    [Applied to stable]
  • Add word boundary tests to the regexes that find @-commands in pkg_add(1) etc. packing lists.
  • Fix SIGINT handling in sftp(1). @@ -693,7 +694,7 @@
    OpenBSD www@openbsd.org -
    $OpenBSD: plus.html,v 1.925 2004/05/30 16:23:12 deraadt Exp $ +
    $OpenBSD: plus.html,v 1.926 2004/06/03 23:38:49 deraadt Exp $