| Errata ID | 145 |
|---|---|
| Date | 2019-06-12 |
| Source package | heimdal |
| Fixed in version | 7.1.0+dfsg-13+deb9u3A~4.4.0.201906051717 |
| Description | This update addresses the following issues: * S4U2Self with unkeyed checksum (CVE-2018-16860) * In the client side of Heimdal, failure to verify anonymous PKINIT PA-PKINIT-KX key exchange permits a man-in-the-middle attack. (CVE-2019-12098) |
| Additional notes | |
| CVE ID | CVE-2018-16860 CVE-2019-12098 |
| UCS Bug number | #49599 |
