Univention Bugzilla – Bug 44985
Heimdal: KDC-REP issue (4.1)
Last modified: 2017-07-17 17:37:30 CEST
+++ This bug was initially created as a clone of Bug #44984 +++ The following issue has been fixed in upstream Heimdal: * Orpheus' Lyre KDC-REP service name validation (mutual auth bypass) in embedded Heimdal (CVE-2017-11103)
Heimdal rebuilt in errata4.1-4 with patch. Advisory: heimdal.yaml
OK - patch OK - test OK - errata4.1-4 version smaller than 4.2-0 OK - yaml
<http://errata.software-univention.de/ucs/4.1/440.html>