Vulnerabilities fixed in Heimdal

Vulnerabilities have been fixed in Heimdal, an implementation of ASN.1/DER, PFIX and Kerberos. The vulnerabilities allow a remote malicious party to potentially execute arbitrary code execute in Heimdal's Key Distribution Center KDC, obtain secret keys obtain secret keys when using 1DES, 3DES, or...

krb5 -- requires_preauth bypass in PKINIT-enabled KDC

MIT reports: In MIT krb5 1.12 and later, when the KDC is configured with PKINIT support, an unauthenticated remote attacker can bypass the requirespreauth flag on a client principal and obtain a ciphertext encrypted in the principal's long-term key. This ciphertext could be used to conduct an...

Security fix for the ALT Linux 8 package krb5 version 1.11.1-alt1

March 30, 2013 Ivan A. Melnikov 1.11.1-alt1 - 1.11.1 + fix a null pointer dereference in the KDC PKINIT code CVE-2013-1415; - drop obsolete patch 21; - add patch 22 from upstream git to fix a memory leak in krb5getinitcredskeytab upstream ticket 7586...

Security fix for the ALT Linux 7 package krb5 version 1.11.1-alt1

March 30, 2013 Ivan A. Melnikov 1.11.1-alt1 - 1.11.1 + fix a null pointer dereference in the KDC PKINIT code CVE-2013-1415; - drop obsolete patch 21; - add patch 22 from upstream git to fix a memory leak in krb5getinitcredskeytab upstream ticket 7586...