[ubuntu/trusty-security] pykerberos 1.1+svn10616-2ubuntu0.1 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Tue Feb 6 16:47:47 UTC 2018
pykerberos (1.1+svn10616-2ubuntu0.1) trusty-security; urgency=medium
* SECURITY UPDATE: The checkPassword function does not authenticate the
KDC it attempts to communicate with (LP: #1716429)
- Add-KDC-authenticity-verification-support-CVE-2015-3206.patch
retrieved from xenial version (1.1.5-2build1).
- CVE-2015-3206
- debian/NEWS: add explanation of issue and default chosen
Date: 2017-10-13 19:40:16.597871+00:00
Changed-By: Mathieu Lafon <mlafon at gmail.com>
Signed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/pykerberos/1.1+svn10616-2ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list