[ubuntu/bionic-security] heimdal 7.5.0+dfsg-1ubuntu0.4 (Accepted)
Rodrigo Figueiredo Zaiden
rodrigo.zaiden at canonical.com
Wed Feb 8 12:29:34 UTC 2023
heimdal (7.5.0+dfsg-1ubuntu0.4) bionic-security; urgency=medium
* SECURITY UPDATE: signature validation failure
- debian/patches/CVE-2022-45142.patch: fix logic inversion issue caused
by the fix for CVE-2022-3437 when using memcmp in
_gssapi_verify_mic_arcfour() and _gssapi_unwrap_arcfour() in
lib/gssapi/krb5/arcfour.c.
- CVE-2022-45142
Date: 2023-02-06 21:32:14.738887+00:00
Changed-By: Rodrigo Figueiredo Zaiden <rodrigo.zaiden at canonical.com>
https://launchpad.net/ubuntu/+source/heimdal/7.5.0+dfsg-1ubuntu0.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list