[ubuntu/focal-security] heimdal 7.7.0+dfsg-1ubuntu1.4 (Accepted)
Rodrigo Figueiredo Zaiden
rodrigo.zaiden at canonical.com
Wed Feb 8 12:29:35 UTC 2023
heimdal (7.7.0+dfsg-1ubuntu1.4) focal-security; urgency=medium
* SECURITY UPDATE: signature validation failure
- debian/patches/CVE-2022-45142.patch: fix logic inversion issue caused
by the fix for CVE-2022-3437 when using memcmp in
_gssapi_verify_mic_arcfour() and _gssapi_unwrap_arcfour() in
lib/gssapi/krb5/arcfour.c.
- CVE-2022-45142
Date: 2023-02-06 21:32:10.351502+00:00
Changed-By: Rodrigo Figueiredo Zaiden <rodrigo.zaiden at canonical.com>
https://launchpad.net/ubuntu/+source/heimdal/7.7.0+dfsg-1ubuntu1.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list