Accepted krb5 1.4.3-5ubuntu0.3 (source)
Ubuntu Installer
archive at ubuntu.com
Wed Apr 4 01:55:37 BST 2007
Accepted:
OK: krb5_1.4.3-5ubuntu0.3.dsc
-> Component: main Section: net
OK: krb5_1.4.3-5ubuntu0.3.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 3 Apr 2007 15:50:20 -0700
Source: krb5
Binary: krb5-doc libkrb5-dev krb5-rsh-server krb5-user krb5-ftpd libkadm55 libkrb53 krb5-clients krb5-telnetd krb5-kdc krb5-admin-server
Architecture: source
Version: 1.4.3-5ubuntu0.3
Distribution: dapper-security
Urgency: low
Maintainer: Sam Hartman <hartmans at debian.org>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos
krb5-doc - Documentation for MIT Kerberos
krb5-ftpd - Secure FTP server supporting MIT Kerberos
krb5-kdc - MIT Kerberos key server (KDC)
krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos
krb5-telnetd - Secure telnet server supporting MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libkadm55 - MIT Kerberos administration runtime libraries
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb53 - MIT Kerberos runtime libraries
Changes:
krb5 (1.4.3-5ubuntu0.3) dapper-security; urgency=low
.
* SECURITY UPDATE: arbitrary login via telnet, arbitrary code execution
via syslog buffer overflows, and heap corruption via GSS api.
* src/appl/telnet/telnetd/{state,sys_term}.c: MIT-SA-2007-1 fix from
upstream (CVE-2007-0956).
* src/lib/kadm5/logger.c: MIT-SA-2007-2 fix from Debian, based on
upstream fixes (CVE-2007-0957).
* src/lib/gssapi/krb5/k5unseal.c: MIT-SA-2007-3 fix from upstream
(CVE-2007-1216).
* References
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2007-001-telnetd.txt
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2007-002-syslog.txt
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2007-003.txt
Files:
890e45d6ecef05ee271bebcab9b7c8a3 848 net standard krb5_1.4.3-5ubuntu0.3.dsc
6d20a550994d48722a1335a2f59e6474 1450397 net standard krb5_1.4.3-5ubuntu0.3.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGEt4pH/9LqRcGPm0RAi/4AJ9Mju9B1ltI7R9hwhW3cewje6vFUACfV4c6
/vcvPbtYjvZ7eJtWANPwjhU=
=4E3b
-----END PGP SIGNATURE-----
More information about the dapper-changes
mailing list