Univention Bugzilla – Bug 44984
Heimdal: KDC-REP issue (4.2)
Last modified: 2018-01-29 09:29:04 CET
Created attachment 9019 [details] 0300-CVE-2017-11103-Orpheus-Lyre-KDC-REP-service-name-val.quilt The following issue has been fixed in upstream Heimdal: * Orpheus' Lyre KDC-REP service name validation (mutual auth bypass) in embedded Heimdal (CVE-2017-11103)
Heimdal rebuilt in errata4.2-1 with patch. Advisory: heimdal.yaml
OK - patch OK - YAML OK - installation OK - kinit/ldapsearch -Y GSSAPI OK - univention-system-check
<http://errata.software-univention.de/ucs/4.2/86.html>
d153aab1 Bug #44984 debmirror: Skip heimdal-1.6~rc2+dfsg-9+deb8u1 import