krb5 security vulnerabilities

To: debian-lts@lists.debian.org
Subject: krb5 security vulnerabilities
From: Brian May <bam@debian.org>
Date: Thu, 08 Feb 2018 08:43:20 +1100
Message-id: <[🔎] 87eflwv5l3.fsf@prune.linuxpenguins.xyz>

CVE-2018-5709 points to
https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow

CVE-2018-5710 points to
https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Denial%20Of%20Service(DoS)

Both these pages have the same text: "We have removed all confidential
data for security concern.  Government organisation or product owner can
request for the data regarding the vulnerabilities."

Ok, I don't think there is anything we can do about it is this case...
-- 
Brian May <bam@debian.org>

Reply to:

Follow-Ups:
- Re: krb5 security vulnerabilities
  - From: Ola Lundqvist <ola@inguza.com>

Prev by Date: python-crypto / pycryptodome / CVE-2018-6594
Next by Date: Re: Bug#889285: bind9: CVE-2017-3139 affects debian too: assertion failure in validator.c:1858
Previous by thread: Re: python-crypto / pycryptodome / CVE-2018-6594
Next by thread: Re: krb5 security vulnerabilities
Index(es):
- Date
- Thread