The MIT Kerberos Team is proud to announce the availability of MIT
Kerberos V5 Release 1.0.4. This release is a bug-fix release only;
there are no feature enhancements over the 1.0.3 release.
The following bugs were fixed:
* A typo in krlogind.c that caused rd_and_store_for_creds to be called
with the wrong arguments has been fixed.
* Telnetd now has the forwarded credentials security hole fixed as well.
* An incorrect buffer length in telnetd has been corrected.
* The KDC now verifies that strings to be logged are non-NULL prior to
syslogging.
* A fencepost error in the pty library has been corrected.
* The pty library no longer tries to chown a zero-length filename.
Getting Kerberos V5 1.0.4
=========================
The simplest way to get the new 1.0.4 release is via the Web. Use the
following URL:
http://web.mit.edu/network/kerberos-form.html
Alternatively, you may retrieve the release using FTP:
FTP to athena-dist.mit.edu, in /pub/kerberos. Get the file
README.KRB5-1.0.4. It will contain instructions on how to
obtain the 1.0.4 release.
----------
Tom Yu
MIT Information Systems/Kerberos Development Team