[Secure-testing-team] Bug#832572: krb5: CVE-2016-3120: Fix S4U2Self KDC crash when anon is restricted
Salvatore Bonaccorso
carnil at debian.org
Wed Jul 27 05:45:55 UTC 2016
Source: krb5
Version: 1.10.1+dfsg-5
Severity: important
Tags: security upstream patch
Hi,
the following vulnerability was published for krb5.
CVE-2016-3120[0]:
Fix S4U2Self KDC crash when anon is restricted
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2016-3120
[1] https://github.com/krb5/krb5/commit/93b4a6306a0026cf1cc31ac4bd8a49ba5d034ba7
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
More information about the Secure-testing-team
mailing list