Debian Security Update DSA-3912 heimdal - security update

Thread starter LinuxBot
Start date Jul 16, 2017

LinuxBot

Member

Jul 16, 2017

Jeffrey Altman, Viktor Dukhovni, and Nicolas Williams reported that Heimdal, an implementation of Kerberos 5 that aims to be compatible with MIT Kerberos, trusts metadata taken from the unauthenticated plaintext (Ticket), rather than the authenticated and encrypted KDC response. A man-in-the-middle attacker can use this flaw to impersonate services to the client.

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 572 (members: 3, guests: 569)

Latest posts

Changed my mind
- Latest: Condobloke
- 29 minutes ago
Mint
Can't Find My Password
- Latest: Condobloke
- 34 minutes ago
General Linux Questions
Urgent & Important :
- Latest: Condobloke
- 46 minutes ago
General Linux Questions
Z
Bluetooth will not turn on on my laptop
- Latest: ZennMystic
- Today at 3:34 AM
Debian and derivatives
Solved Suddenly Can't Visit Linux.org On my Laptop (No problems with my Android phone)
- Latest: MikeWalsh
- Today at 3:15 AM
Linux Networking

Top