In Heimdal 7.1 through 7.4, remote unauthenticated attackers are able to
crash the KDC by sending a crafted UDP packet containing empty data
fields for client name or realm.
Security: CVE-2017-17439
Semi-automatic update generated by https://github.com/ryantm/nix-update tools. These checks were done:
- built on NixOS
- ran `/nix/store/rhcppqwmdlwak4ifncamjiqqybwlhvcj-criu-3.8/bin/compel -h` got 0 exit code
- ran `/nix/store/rhcppqwmdlwak4ifncamjiqqybwlhvcj-criu-3.8/bin/compel --help` got 0 exit code
- ran `/nix/store/rhcppqwmdlwak4ifncamjiqqybwlhvcj-criu-3.8/bin/criu -h` got 0 exit code
- ran `/nix/store/rhcppqwmdlwak4ifncamjiqqybwlhvcj-criu-3.8/bin/criu --help` got 0 exit code
- ran `/nix/store/rhcppqwmdlwak4ifncamjiqqybwlhvcj-criu-3.8/bin/criu -V` and found version 3.8
- ran `/nix/store/rhcppqwmdlwak4ifncamjiqqybwlhvcj-criu-3.8/bin/criu --version` and found version 3.8
- found 3.8 with grep in /nix/store/rhcppqwmdlwak4ifncamjiqqybwlhvcj-criu-3.8
- directory tree listing: https://gist.github.com/6bc3ef9b1f4c69a6862043a1158fba16
Semi-automatic update generated by https://github.com/ryantm/nix-update tools. These checks were done:
- built on NixOS
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator_bin -V` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator_bin --version` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator_bin_dbg -V` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator_bin_dbg --version` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator_coverage_bin_dbg -V` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator_coverage_bin_dbg --version` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator -V` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator --version` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator_coverage -V` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator_coverage --version` and found version 3.922
- ran `/nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922/bin/verilator_profcfunc help` got 0 exit code
- found 3.922 with grep in /nix/store/fnypnfihpivkzgwrpi3g6r7ag5psfdim-verilator-3.922
- directory tree listing: https://gist.github.com/04b5044a54bb4ff549696cbcd57cd88e
Seems to work, not sure why disabled.
Steps are something like:
* install dictionaries into profile
* attempt to compose a message
* (navigate dialogs about server and posting profile)
* enable spell-checking from edit->checkbox
(note this toggle is avail even when pan can't spellcheck)
Semi-automatic update generated by https://github.com/ryantm/nix-update tools. These checks were done:
- built on NixOS
- ran `/nix/store/iab00yc7zgj1q5cdazbnfbx2gc9f6zi0-netcdf-fortran-4.4.4/bin/nf-config -h` got 0 exit code
- ran `/nix/store/iab00yc7zgj1q5cdazbnfbx2gc9f6zi0-netcdf-fortran-4.4.4/bin/nf-config --help` got 0 exit code
- ran `/nix/store/iab00yc7zgj1q5cdazbnfbx2gc9f6zi0-netcdf-fortran-4.4.4/bin/nf-config help` got 0 exit code
- ran `/nix/store/iab00yc7zgj1q5cdazbnfbx2gc9f6zi0-netcdf-fortran-4.4.4/bin/nf-config --version` and found version 4.4.4
- found 4.4.4 with grep in /nix/store/iab00yc7zgj1q5cdazbnfbx2gc9f6zi0-netcdf-fortran-4.4.4
- directory tree listing: https://gist.github.com/c28218d35636f05cac88796c8fe27ec1