Projects / Heimdal / Releases

All releases of Heimdal

  •  08 May 2008 20:23
Avatar

    Release Notes: Read-only PKCS11 provider is built in to hx509. Documentation for hx509, hcrypto, and ntlm libraries was improved. Better compatibilty with Windows 2008 Server pre-releases and Vista. Mac OS X 10.5 support for native credential cache. A pkg-config file for Heimdal (heimdal-gssapi.pc). Several bugs were fixed.

    •  09 Aug 2007 15:30
    Avatar

      Release Notes: Several bugs in iprop were fixed. Platforms without dlopen are now supported. RFC3526 modp group14 is now included by default. [kdc] database = { } entries are now handled without realm = stanzas. krb5_get_renewed_creds and kaserver preauth were fixed along with other bugs.

      •  05 Aug 2007 23:39
      Avatar

        Release Notes: A new gss_pseudo_random() function for mechglue and krb5 has been added, and the session key for the krbtgt is now selected by the client's best encryption type. Interoperability with other PK-INIT implementations has improved, and there is inital support for Mac OS X Keychain for hx509, as well as alias support for inital ticket requests. Symbol versioning has been added to selected libraries on platforms that use the GNU link editor: gssapi, hcrypto, heimntlm, hx509, krb5, and libkdc. A new version of imath is included in hcrypto. Some memory leaks and other bugs were also fixed.

        •  13 Jan 2007 15:02
        Avatar

          Release Notes: This release fixes a security problem in rshd that enabled an attacker to overwrite and change ownership of any file that root could write. It fixes a DOS in telnetd. It makes gss_acquire_cred(GSS_C_ACCEPT) check that the requested name exists in the keytab before returning success. (This allows servers to check if it's even possible to use GSSAPI.) It fixes the receiving end of token delegation for GSS-API. It still wrongly uses subkey for sending, for compatibility reasons. telnetd, login, and rshd are now more verbose in logging failed and successful logins.

          •  02 Jul 2004 08:19
          Avatar

            Release Notes: This release features security fixes and new functionality.

            •  01 Jan 2003 16:59
            Avatar

              Release Notes: All versions of the kadmind daemon are vulnerable to a remote root exploit if compiled with support for the Kerberos 4 kadmin protocol. Heimdal 0.5.1 should fix this problem. If you are running a version older than 0.5.1 and you have Kerberos 4 support enabled in kadmind, then you should disable kadmind until you have time to upgrade.

              Screenshot

              Project Spotlight

              episoder

              A tool to tell you about new episodes of your favourite TV shows.

              Screenshot

              Project Spotlight

              BalanceNG

              A modern software IP load balancer.