Accepted: krb5 1.6.dfsg.3~beta1-2ubuntu1 (source)
Kees Cook
kees at ubuntu.com
Wed Mar 19 01:50:36 GMT 2008
Accepted:
OK: krb5_1.6.dfsg.3~beta1.orig.tar.gz
OK: krb5_1.6.dfsg.3~beta1-2ubuntu1.diff.gz
OK: krb5_1.6.dfsg.3~beta1-2ubuntu1.dsc
-> Component: main Section: net
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 18 Mar 2008 11:07:13 -0700
Source: krb5
Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc
Architecture: source
Version: 1.6.dfsg.3~beta1-2ubuntu1
Distribution: hardy
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos
krb5-doc - Documentation for MIT Kerberos
krb5-ftpd - Secure FTP server supporting MIT Kerberos
krb5-kdc - MIT Kerberos key server (KDC)
krb5-pkinit - Pkinit Plugin for MIT Kerberos
krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos
krb5-telnetd - Secure telnet server supporting MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libkadm55 - MIT Kerberos administration runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb53 - MIT Kerberos runtime libraries
Changes:
krb5 (1.6.dfsg.3~beta1-2ubuntu1) hardy; urgency=low
.
* SECURITY UPDATE: arbitrary code execution via freed pointer and memory
overflows.
* src/kdc/{kerberos_v4,dispatch,network}.c: upstream fixes patched inline
(MITKRB5-SA-2008-001: CVE-2008-0062, CVE-2008-0063).
* src/lib/rpc/{svc,svc_tcp}.c: upstream fixed patched inline
(MITKRB5-SA-2008-002: CVE-2008-0947)
Files:
26fbe94c0a879e92115b74f07f613271 1084 net standard krb5_1.6.dfsg.3~beta1-2ubuntu1.dsc
6e8dd48f93cb8df930b48148fc627926 1734231 net standard krb5_1.6.dfsg.3~beta1-2ubuntu1.diff.gz
Original-Maintainer: Sam Hartman <hartmans at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFH4D5SH/9LqRcGPm0RApNLAJ9P/WAFpufkSIXbB+ZVluITASqSkACgmhpp
QZcdnqN7w1k7sbMQgYY0go4=
=mIX0
-----END PGP SIGNATURE-----
More information about the Hardy-changes
mailing list