diff options
| author | Cy Schubert <cy@FreeBSD.org> | 2015-02-26 01:20:17 +0000 |
|---|---|---|
| committer | Cy Schubert <cy@FreeBSD.org> | 2015-02-26 01:20:17 +0000 |
| commit | 138604a7144a33f9c94d8012592317f521fd16d8 (patch) | |
| tree | c299e3417e47ad81bfa595a765b71062f520d4f5 /audio/patchage | |
| parent | Document bugs fixed in krb5 1.11.6. (diff) | |
Update 1.11.5 --> 1.11.6
This is a bugfix release. The krb5-1.11 release series has reached
the end of its maintenance period, and krb5-1.11.6 is the last planned
release in the krb5-1.11 series. For new deployments, installers
should prefer the krb5-1.13 release series or later.
This commit deprecates this port.
* Work around a gcc optimizer bug that could cause DB2 KDC database
operations to spin in an infinite loop
* Fix a backward compatibility problem with the LDAP KDB schema that
could prevent krb5-1.11 and later from decoding entries created by
krb5-1.6.
* Handle certain invalid RFC 1964 GSS tokens correctly to avoid
invalid memory reference vulnerabilities. [CVE-2014-4341
CVE-2014-4342]
* Fix memory management vulnerabilities in GSSAPI SPNEGO.
[CVE-2014-4343 CVE-2014-4344]
* Fix buffer overflow vulnerability in LDAP KDB back end.
[CVE-2014-4345]
* Fix multiple vulnerabilities in the LDAP KDC back end.
[CVE-2014-5354 CVE-2014-5353]
* Fix multiple kadmind vulnerabilities, some of which are based in the
gssrpc library. [CVE-2014-5352 CVE-2014-9421 CVE-2014-9422
CVE-2014-9423]
Security: dbf9e66c-bd50-11e4-a7ba-206a8a720317
CVE-2014-4341, CVE-2014-4342, CVE-2014-4343, CVE-2014-4344
CVE-2014-4345, CVE-2014-5354, CVE-2014-5353, CVE-2014-5352
CVE-2014-9421, CVE-2014-9422, CVE-2014-9423
Notes
Notes:
svn path=/head/; revision=379969
Diffstat (limited to 'audio/patchage')
0 files changed, 0 insertions, 0 deletions