Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > August 2006 > Two MIT Kerberos Team releases: 1. krb5-1.4.4 2. krb5-1.5.1

August 2006

Two MIT Kerberos Team releases: 1. krb5-1.4.4 2. krb5-1.5.1

ID: 00577
Ref: 552/2006
Date: 25 August 2006:14:13:28
Version: 1
Title: Two MIT Kerberos Team releases: 1. krb5-1.4.4 2. krb5-1.5.1
Abstract:
Vendors affected: MIT
Operating systems affected: MIT
Applications affected: MIT
Title
=====

Two MIT Kerberos Team releases:

1. krb5-1.4.4

2. krb5-1.5.1

Detail
======

1. The MIT Kerberos Team announces the availability of MIT Kerberos 5
Release 1.4.4. Please see below for a list of some major changes
included, or consult the README file in the source tree for a more
detailed list of significant changes.

2. The MIT Kerberos Team announces the availability of MIT Kerberos 5
Release 1.5.1. Please see below for a list of some major changes
included, or consult the README file in the source tree for a more
detailed list of significant changes.




1.



- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The MIT Kerberos Team announces the availability of MIT Kerberos 5
Release 1.4.4. Please see below for a list of some major changes
included, or consult the README file in the source tree for a more
detailed list of significant changes.

RETRIEVING KERBEROS 5 RELEASE 1.4.4
===================================

You may retrieve the Kerberos 5 Release 1.4.4 source from the
following URL:

http://web.mit.edu/kerberos/dist/

The homepage for the krb5-1.4.4 release is:

http://web.mit.edu/kerberos/krb5-1.4/

Further information about Kerberos 5 may be found at the following
URL:

http://web.mit.edu/kerberos/

MAJOR CHANGES
=============

The only significant change in krb5-1.4.4 is to fix the security
vulnerabilities decribed in MITKRB5-SA-2006-001, which are local
privilege escalation vulnerabilities in applications running on Linux
and AIX.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (SunOS)

iD8DBQFE7PruSO8fWy4vZo4RAoqAAJwMAU2f2fq7uDTVW5xXs/KE3NfTYACgjdeB
Wimg0fmIJpLq85ptubEz0yI=
=9+NL
- -----END PGP SIGNATURE-----


2.


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The MIT Kerberos Team announces the availability of MIT Kerberos 5
Release 1.5.1. Please see below for a list of some major changes
included, or consult the README file in the source tree for a more
detailed list of significant changes.

RETRIEVING KERBEROS 5 RELEASE 1.5.1
===================================

You may retrieve the Kerberos 5 Release 1.5.1 source from the
following URL:

http://web.mit.edu/kerberos/dist/

The homepage for the krb5-1.5.1 release is:

http://web.mit.edu/kerberos/krb5-1.5/

Further information about Kerberos 5 may be found at the following
URL:

http://web.mit.edu/kerberos/

MAJOR CHANGES
=============

The only significant change in krb5-1.5.1 is to fix the security
vulnerabilities decribed in MITKRB5-SA-2006-001, which are local
privilege escalation vulnerabilities in applications running on Linux
and AIX.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (SunOS)

iQCVAwUBROz66KbDgE/zdoE9AQJm0QP/VSciSlhcQWA3SOJtWcsIlqCYTuds2vvg
oO5qxVf/mPocN/42cafsEXjxx2ngenihDAahl+KBQ/kvvoYiviasXpuOMnxK2Z/N
j6ut4WhrJYyRxYS0C/KRZX7kdMXkJeGEquaN81glyMECU8HzfDWl03L1FhevRkj4
Zw7OTbCxDZw=
=SX6p
- -----END PGP SIGNATURE-----
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |