[ubuntu/hardy-security] krb5, krb5_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc_translations.tar.gz, krb5_1.6.dfsg.3~beta1-2ubuntu1.3_i386_translations.tar.gz, krb5_1.6.dfsg.3~beta1-2ubuntu1.3_ia64_translations.tar.gz, krb5_1.6.dfsg.3~beta1-2ubuntu1.3_amd64_translations.tar.gz, krb5_1.6.dfsg.3~beta1-2ubuntu1.3_sparc_translations.tar.gz (delayed), krb5_1.6.dfsg.3~beta1-2ubuntu1.3_lpia_translations.tar.gz, krb5_1.6.dfsg.3~beta1-2ubuntu1.3_hppa_translations.tar.gz 1.6.dfsg.3~beta1-2ubuntu1.3 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Jan 12 20:04:15 GMT 2010


krb5 (1.6.dfsg.3~beta1-2ubuntu1.3) hardy-security; urgency=low

  * SECURITY UPDATE: unauthenticated remote attacker can crash or
    compromise the KDC via flaws in AES and RC4 decryption (CVE-2009-4212).
    - debian/patches/MITKRB5-SA-2009-004 applied inline.
    - http://web.mit.edu/kerberos/advisories/2009-004-patch_1.6.3.txt

Date: Mon, 11 Jan 2010 14:40:21 -0800
Changed-By: Kees Cook <kees at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/krb5/1.6.dfsg.3~beta1-2ubuntu1.3
-------------- next part --------------
Format: 1.7
Date: Mon, 11 Jan 2010 14:40:21 -0800
Source: krb5
Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc
Architecture: source
Version: 1.6.dfsg.3~beta1-2ubuntu1.3
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Kees Cook <kees at ubuntu.com>
Description: 
 krb5-admin-server - MIT Kerberos master server (kadmind)
 krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos
 krb5-doc   - Documentation for MIT Kerberos
 krb5-ftpd  - Secure FTP server supporting MIT Kerberos
 krb5-kdc   - MIT Kerberos key server (KDC)
 krb5-pkinit - Pkinit Plugin for MIT Kerberos
 krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos
 krb5-telnetd - Secure telnet server supporting MIT Kerberos
 krb5-user  - Basic programs to authenticate using MIT Kerberos
 libkadm55  - MIT Kerberos administration runtime libraries
 libkrb5-dbg - Debugging files for MIT Kerberos
 libkrb5-dev - Headers and development libraries for MIT Kerberos
 libkrb53   - MIT Kerberos runtime libraries
Changes: 
 krb5 (1.6.dfsg.3~beta1-2ubuntu1.3) hardy-security; urgency=low
 .
   * SECURITY UPDATE: unauthenticated remote attacker can crash or
     compromise the KDC via flaws in AES and RC4 decryption (CVE-2009-4212).
     - debian/patches/MITKRB5-SA-2009-004 applied inline.
     - http://web.mit.edu/kerberos/advisories/2009-004-patch_1.6.3.txt
Files: 
 07064541f3ecd4f44bcccf0b840cc067 1135 net standard krb5_1.6.dfsg.3~beta1-2ubuntu1.3.dsc
 1583ff4070da038720c0cce5e3a8cac5 1745895 net standard krb5_1.6.dfsg.3~beta1-2ubuntu1.3.diff.gz
Original-Maintainer: Sam Hartman <hartmans at debian.org>


More information about the Hardy-changes mailing list