Commit - rpms/krb5 - 1171aa60d067146c4242263474bb24fe58b33211

rpms / krb5

Overview Files Commits Branches Forks Releases

Monitoring status:

Bugzilla Assignee:

Fedora:: jrische
EPEL:: abbra

`1171aa6` * Mon May 4 2015 Roland Mainz <rmainz@redhat.com> - 1.13.1-4

Authored and Committed by Roland Mainz 9 years ago

raw patch tree parent

2 files changed. 113 lines added. 1 lines removed.

krb5-1.13.2-CVE_2015_2694_requires_preauth_bypass_in_PKINIT_enabled_KDC.patch

    * Mon May 4 2015 Roland Mainz <rmainz@redhat.com> - 1.13.1-4
    - fix for CVE-2015-2694 (#1216133) "requires_preauth bypass
      in PKINIT-enabled KDC".
      In MIT krb5 1.12 and later, when the KDC is configured with
      PKINIT support, an unauthenticated remote attacker can
      bypass the requires_preauth flag on a client principal and
      obtain a ciphertext encrypted in the principal's long-term
      key.  This ciphertext could be used to conduct an off-line
      dictionary attack against the user's password.
    resolves: #1216134

krb5-1.13.2-CVE_2015_2694_requires_preauth_bypass_in_PKINIT_enabled_KDC.patch

file added

+100

krb5.spec

file modified

+13 -1

rpms / krb5

Source Code

1171aa6 * Mon May 4 2015 Roland Mainz <rmainz@redhat.com> - 1.13.1-4

Authored and Committed by Roland Mainz 9 years ago

`1171aa6` * Mon May 4 2015 Roland Mainz <rmainz@redhat.com> - 1.13.1-4