Re: [SRM] krb5 changelog missing CVE

To: debian-release@lists.debian.org
Subject: Re: [SRM] krb5 changelog missing CVE
From: Moritz Mühlenhoff <jmm@inutil.org>
Date: Wed, 4 Jan 2012 18:37:36 +0100
Message-id: <[🔎] slrnjg93j0.41s.jmm@inutil.org>
References: <[🔎] tslobukr54q.fsf@mit.edu> <[🔎] 87obuk4n7l.fsf@mid.deneb.enyo.de> <[🔎] 1325621401.19606.4.camel@jacala.jungle.funky-badger.org> <[🔎] 87k45835cx.fsf@mid.deneb.enyo.de> <[🔎] 1325626071.19606.11.camel@jacala.jungle.funky-badger.org> <[🔎] 87r4zgezes.fsf@mid.deneb.enyo.de> <[🔎] 20120104150531.GA23831@thrall.0x539.de>

Philipp Kern <pkern@debian.org> schrieb:
> Why is that, given that according to the tracker, lenny isn't even
> affected?  I'd appreciate a fix for a remote DoS of a network service
> through security, to be honest.

For all practical purposes the KDC is local to your trust context.

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Re: [SRM] krb5 changelog missing CVE
  - From: Philipp Kern <pkern@debian.org>

References:
- [SRM] krb5 changelog missing CVE
  - From: Sam Hartman <hartmans@debian.org>
- Re: [SRM] krb5 changelog missing CVE
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: [SRM] krb5 changelog missing CVE
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Re: [SRM] krb5 changelog missing CVE
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: [SRM] krb5 changelog missing CVE
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Re: [SRM] krb5 changelog missing CVE
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: [SRM] krb5 changelog missing CVE
  - From: Philipp Kern <pkern@debian.org>

Prev by Date: Re: [SRM] krb5 changelog missing CVE
Next by Date: Re: [SRM] krb5 changelog missing CVE
Previous by thread: Re: [SRM] krb5 changelog missing CVE
Next by thread: Re: [SRM] krb5 changelog missing CVE
Index(es):
- Date
- Thread