Heimdal release 0.6

Released: 2003-05-12 (download)

Known vulnerabilities:
2005-04-20: telnet vulnerabilities
2004-09-13: ftpd root escalation
2004-05-06: Kerberos 4 buffer overrun in Heimdal kadmin
2004-04-01: Cross-realm trust vulnerability in Heimdal

Major changes

• The DES3 GSS-API mechanism has been changed to inter-operate with other GSSAPI implementations. See man page for gssapi(3) how to turn on generation of correct MIC messages. Next major release of heimdal will generate correct MIC by default.
• More complete GSS-API support
• Better AFS support: kdc (524) supports 2b; 524 in kdc and AFS support in applications no longer requires Kerberos 4 libs
• Kerberos 4 support in kdc defaults to turned off (includes ka and 524)
• other bug fixes