Errata overview
Errata ID 529
Date 2019-06-12
Source package heimdal
Fixed in version 7.1.0+dfsg-13+deb9u3A~
This update addresses the following issues:
* S4U2Self with unkeyed checksum (CVE-2018-16860)
* In the client side of Heimdal, failure to verify anonymous PKINIT
  PA-PKINIT-KX key exchange permits a man-in-the-middle attack.
Additional notes
CVE ID CVE-2018-16860
UCS Bug number #49601