| Release | Version |
|---|---|
| jessie (security) | 1.6~rc2+dfsg-9+deb8u1 |
| stretch (security) | 7.1.0+dfsg-13+deb9u3 |
| buster | 7.5.0+dfsg-3 |
| bullseye | 7.7.0+dfsg-1 |
| sid | 7.7.0+dfsg-1 |
| Bug | jessie | stretch | buster | bullseye | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2019-14870 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11 ... |
| CVE-2019-12098 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | In the client side of Heimdal before 7.6.0, failure to verify anonymou ... |
| CVE-2018-16860 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x ... |
| CVE-2017-6594 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | The transit path validation code in Heimdal before 7.3 might allow att ... |
| Bug | Description |
|---|---|
| CVE-2017-17439 | In Heimdal through 7.4, remote unauthenticated attackers are able to c ... |
| CVE-2017-11103 | Heimdal before 7.4 allows remote attackers to impersonate services wit ... |
| CVE-2011-4862 | Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 throu ... |
| CVE-2010-1321 | The kg_accept_krb5 function in krb5/accept_sec_context.c in the GSS-AP ... |
| CVE-2007-5939 | The gss_userok function in appl/ftp/ftpd/gss_userok.c in Heimdal 0.7.2 ... |
| CVE-2006-0677 | telnetd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2 allows re ... |
| CVE-2006-0582 | Unspecified vulnerability in rshd in Heimdal 0.6.x before 0.6.6 and 0. ... |
| CVE-2005-2040 | Multiple buffer overflows in the getterminaltype function in telnetd f ... |
| CVE-2005-0469 | Buffer overflow in the slc_add_reply function in various BSD-based Tel ... |
| CVE-2004-0434 | k5admind (kadmind) for Heimdal allows remote attackers to execute arbi ... |
| CVE-2004-0371 | Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly pe ... |
| CVE-2003-0138 | Version 4 of the Kerberos protocol (krb4), as used in Heimdal and othe ... |
| CVE-2002-1235 | The kadm_ser_in function in (1) the Kerberos v4compatibility administr ... |
| CVE-2002-1226 | Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, pos ... |
| CVE-2002-1225 | Multiple buffer overflows in Heimdal before 0.5, possibly in both the ... |
| DSA / DLA | Description |
|---|---|
| DSA-4455-1 | heimdal - security update |
| DSA-4055-1 | heimdal - security update |
| DSA-3912-1 | heimdal - security update |
| DSA-3912-1 | heimdal - security update |
| DLA-1027-1 | heimdal - security update |
| DSA-2372-1 | heimdal - buffer overflow |
| DSA-2372-1 | heimdal - buffer overflow |
| DSA-977-1 | heimdal - several |
| DSA-977-1 | heimdal - several |
| DSA-765-1 | heimdal - buffer overflow |
| DSA-758-1 | heimdal - buffer overflow |
| DSA-758-1 | heimdal - buffer overflow |
| DSA-504 | heimdal - missing input sanitising |
| DSA-476 | heimdal - cross-realm |
| DSA-269 | heimdal - Cryptographic weakness |
| DSA-185 | heimdal - buffer overflow |
| DSA-178 | heimdal - remote command execution |