Conectiva Information for VU#875073
Kerberos administration daemon vulnerable to buffer overflow
- Vendor Information Help Date Notified: 24 Oct 2002
- Statement Date:
- Date Updated: 06 Nov 2002
Our MIT Kerberos 5 packages in Conectiva Linux 8 do contain the vulnerable kadmind4 daemon, but it is not used by default nor is it installed as a service.
Updated packages are being uploaded to our ftp server and should be available in a few hours at:
The vendor has not provided us with any further information regarding this vulnerability.
Please see Conectiva Linux Announcement CLSA-2002:534 (English).
If you have feedback, comments, or additional information about this vulnerability, please send us email.