Subject: CVS commit: pkgsrc/security/heimdal
From: Lubomir Sedlacik
Date: 2006-08-09 19:58:09
Message id: 20060809175809.9561E211CA@cvs.netbsd.org
Log Message:
Security fix for SA21436:

"A security issue has been reported in Heimdal, which potentially can be
 exploited by malicious, local users to perform certain actions with
 escalated privileges.

 The security issue is caused due to missing checks for whether the
 "setuid()" call has succeeded in the bundled rcp application. This may
 be exploited to perform certain actions with root privileges if the
 "setuid()" call fails due to e.g. resource limits."

http://secunia.com/advisories/21436/
http://www.pdc.kth.se/heimdal/advisory/2006-08-08/

Bump PKGREVISION.
Files:
RevisionActionfile
1.62modifypkgsrc/security/heimdal/Makefile
1.21modifypkgsrc/security/heimdal/distinfo
1.1addpkgsrc/security/heimdal/patches/patch-am
1.1addpkgsrc/security/heimdal/patches/patch-an
1.1addpkgsrc/security/heimdal/patches/patch-ao
1.1addpkgsrc/security/heimdal/patches/patch-ap
1.1addpkgsrc/security/heimdal/patches/patch-aq