debian-lan-config (0.26) unstable; urgency=high

    The Kerberos kadm ACLs in '/etc/krb5kdc/kadm5.acl' contained an
    insecure setting allowing all authenticated users in the network
    to change the credentials of everyone else, thus impersonating
    other users and gaining their privileges.

    If you have used these ACLs, please check and remove the
    corresponding lines from 'kadm5.acl'.

 -- Andreas B. Mundt <andi@debian.org>  Tue, 24 Dec 2019 09:12:06 +0100