From 90fecbfc2b97091f32539ed4d7b7c077da43810d Mon Sep 17 00:00:00 2001 From: Tom Yu Date: Tue, 29 Apr 2003 23:43:31 +0000 Subject: update for 1.3a3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15384 dc483132-0cff-0310-8789-dd5450dbe970 --- README | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) (limited to 'README') diff --git a/README b/README index 83e706e..3e12edf 100644 --- a/README +++ b/README @@ -123,6 +123,9 @@ Major changes listed by ticket ID * [1189, 1251] The KfM krb4 library source base has been merged. +* [1377, 1442, 1443] The Microsoft set-password protocol has been + implemented. (needs confirmation) Thanks to Paul Nelson. + * [1385, 1395, 1410] The krb4 protocol vulnerabilities [MITKRB5-SA-2003-004] have been worked around. Note that this will disable krb4 cross-realm functionality, as well as krb4 triple-DES @@ -271,6 +274,9 @@ Minor changes listed by ticket ID * [1240] Windows calling conventions for krb5int_c_combine_keys() have been aligned. +* [1242] Build system incompatibilities with Debian's chimeric + autoconf installation have been worked around. + * [1256] Incorrect sizes passed to memset() in combine_keys() operations have been corrected. @@ -335,6 +341,13 @@ Minor changes listed by ticket ID * [1414] libtelnet is now built using the same library build framework as the rest of the tree. +* [1417] A minor memory leak in krb5_read_password() has been fixed. + +* [1419] A memory leak in asn1_decode_kdc_req_body() has been fixed. + +* [1439] krb5_free_pwd_sequences() now correctly frees the entire + sequence of elements. + --[ DELETE BEFORE RELEASE ---changes to unreleased code, etc.--- ]-- * [1054] KRB-CRED messages for RC4 are encrypted now. @@ -356,6 +369,9 @@ Minor changes listed by ticket ID * [1391] Fix kadmind startup failure with krb4 vuln patch. +* [1409] get_ad_tkt() now prompts for password if there are no tickets + (in KfM). + Copyright Notice and Legal Administrivia ---------------------------------------- -- cgit v1.1