[Calendarserver-maintainers] Bug#796195: CVE-2015-3206
jmm at debian.org
Thu Aug 20 09:15:01 UTC 2015
CVE-2015-3206 was assigned to the fact that pykerberos doesn't
validate the authenticity of the KDC in checkPassword(). Fix
For unstable we should probably enable it by default and keep
the status quo for earlier releases.
More information about the Calendarserver-maintainers