y 3.2 Patch 001: kadmind

Contributed by jose on 2002-11-05 from the quick-erratta dept.

From Miod@ to the security-announce list:

OpenBSD 3.2, as shipped, is vulnerable to a kadmind remote exploit if the
machine is configured as a kdc (which is not the case in the default
install).

A fix addressing this problem is available in the -STABLE branch, and as
a standalone patch file, at the following location:
    ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.2/common/001_kadmin.patch

For more information about errata and patch, please read the OpenBSD
errata page:
    http://www.openbsd.org/errata.html

The patch is available via FTP and has been rolled into -stable already.

Thanks to Miod for coordinating this with us!

(Comments are closed)

Comments

By Anonymous Coward () on 2002-11-05 18:07

I see security-accounce@ is being used now :) That's very good, since iirc the last 3.1 patches weren't announced on the list :(
By Noob () on 2002-11-05 23:02

I am very happy to see such improvement in the announcement for this latest patch for 3.2

I too was a bit disappointed in the way the last patch was handled.

Inconsistency or lazyness in even the simple tasks makes me worry that the important ones were done without careful attention to detail as well.

Good Job OpenBSD Team!
You've made me happy anyways ;-)
By Anonymous Coward () on 2002-11-06 06:26

Wouldn't the OpenBSD 3.2's "Non-executable stack" issue with all binaries mitigated if a successful exploit happened?

Latest Articles

Wed, Apr 10
- 18:50 OpenSMTPD 7.5.0p0 Released (2)
Tue, Apr 09
- 04:49 20 years since "and we're just starting": undeadly.org turns 20 (2024-04-09) (12)
Fri, Apr 05
- 06:16 OpenBSD 7.5 released (2)
Thu, Mar 28
- 18:18 LibreSSL 3.8.4 and 3.9.1 released (0)
Tue, Mar 12
- 06:53 OpenSSH 9.7/9.7p1 released! (0)
Mon, Mar 11
- 11:28 Game of Trees 0.97 released (0)
Sun, Mar 10
- 09:06 LibreSSL versions 3.8.3 and 3.9.0 released (0)
Fri, Mar 08
- 06:46 OpenBGPD 8.4 released (0)
Mon, Mar 04
- 06:32 rpki-client 9.0 released (0)

Credits

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]