Bugtraq mailing list archives

revised patches for kerberos vulnerability

From: tlyu () MIT EDU (Tom Yu)
Date: Fri, 19 May 2000 16:54:53 -0400


The patches previously posted for fixing the krb4 buffer overruns had
some whitespace issues resulting from untabifying.  Some versions of
patch don't like that.  Use "patch -l" instead, or use the fixed
patches at

        http://web.mit.edu/kerberos/www/advisories/index.html

These fixed patches have tabs repaired and also have pathnames in the
diff headers fixed to include directory names so that they may be
applied from the top of a source treee.

---Tom

Current thread:

Re: RFP2K04: Mining BlackICE with RFPickAxe, (continued)
- - - Re: RFP2K04: Mining BlackICE with RFPickAxe Andrew Lambeth (May 19)
    - Remote Dos attack against Intel express 8100 router Dimuthu Parussalla (May 18)
    - RFP2K05: NetProwler vs. RFProwler rain forest puppy (May 19)
    - Key Generation Security Flaw in PGP 5.0 gec () ACM ORG (May 23)
    - Filesystem vulnerability in AIX salme () US IBM COM (May 23)
    - Re: RFP2K05: NetProwler vs. RFProwler Pedro Quintanilha (May 23)
    - Security Vulnerability in Qpopper 2.53 (Upgrade to 3.0.2) Qpopper Support (May 23)
    - Remote xploit for MDBMS |[TDP]| (May 24)
    - HP Web JetAdmin Version 6.0 Remote DoS attack Vulnerability Ussr Labs (May 24)
    - Re: RFP2K04: Mining BlackICE with RFPickAxe rain forest puppy (May 19)
    - revised patches for kerberos vulnerability Tom Yu (May 19)
    - Microsoft Security Bulletin (MS00-029) Microsoft Product Security (May 19)
    - BindView Security Advisory: jolt2 - Remote DoS against NT, W2K, 9x BindView Security Advisory (May 19)
    - Bugtraq Stats for the last 3 years available now. Alfred Huger (May 17)
  - KNapster Vulnerability Compromises User-readable Files Tom Daniels (May 10)
  - Gnapster Vulnerability Compromises User-readable Files Jim Early (May 10)
  - Possible symlink problems with Netscape 4.73 foo (May 10)
  - SSH Authentication Vulnerability John P. McNeely (May 10)
    - Re: [cert] SSH Authentication Vulnerability Ignacio Kadel-Garcia (May 11)
  - Black Watch Labs Vulnerability Alert Black Watch Labs (May 10)
    - issues with free Perl CGI's (Re: Black Watch Labs...) Peter W (May 10)

(Thread continues...)