[ubuntu/jaunty] krb5 1.6.dfsg.4~beta1-5ubuntu2 (Accepted)
Kees Cook
kees at ubuntu.com
Tue Apr 7 21:40:24 BST 2009
krb5 (1.6.dfsg.4~beta1-5ubuntu2) jaunty; urgency=low
* SECURITY UPDATE: denial of service via buffer overflows.
- src/lib/gssapi/spnego/spnego_mech.c, src/lib/krb5/asn.1/asn1buf.c:
GSS-API could be crashed remotely (MITKRB5-SA-2009-001: CVE-2009-0844,
CVE-2009-0845, CVE-2009-0847).
- src/lib/krb5/asn.1/asn1_decode.c: ASN.1 decoder freed uninitialized
pointers (MITKRB5-SA-2009-002: CVE-2009-0846).
Date: Tue, 07 Apr 2009 12:47:50 -0700
Changed-By: Kees Cook <kees at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/krb5/1.6.dfsg.4~beta1-5ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 07 Apr 2009 12:47:50 -0700
Source: krb5
Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc
Architecture: source
Version: 1.6.dfsg.4~beta1-5ubuntu2
Distribution: jaunty
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos
krb5-doc - Documentation for MIT Kerberos
krb5-ftpd - Secure FTP server supporting MIT Kerberos
krb5-kdc - MIT Kerberos key server (KDC)
krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
krb5-pkinit - PKINIT plugin for MIT Kerberos
krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos
krb5-telnetd - Secure telnet server supporting MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libkadm55 - MIT Kerberos administration runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb53 - MIT Kerberos runtime libraries
Changes:
krb5 (1.6.dfsg.4~beta1-5ubuntu2) jaunty; urgency=low
.
* SECURITY UPDATE: denial of service via buffer overflows.
- src/lib/gssapi/spnego/spnego_mech.c, src/lib/krb5/asn.1/asn1buf.c:
GSS-API could be crashed remotely (MITKRB5-SA-2009-001: CVE-2009-0844,
CVE-2009-0845, CVE-2009-0847).
- src/lib/krb5/asn.1/asn1_decode.c: ASN.1 decoder freed uninitialized
pointers (MITKRB5-SA-2009-002: CVE-2009-0846).
Checksums-Sha1:
1016807c84dc37565e5f7d3a176893167a609877 1662 krb5_1.6.dfsg.4~beta1-5ubuntu2.dsc
73df3ee63cfe63f631116f8d4042819ff28e52ff 877817 krb5_1.6.dfsg.4~beta1-5ubuntu2.diff.gz
Checksums-Sha256:
01ecbea4e42093a7a4205d523af97cb44c5d7c7984e6d0975f545c7c44cd29f8 1662 krb5_1.6.dfsg.4~beta1-5ubuntu2.dsc
272d268f4e5e8e5c57566e130408595972d3251e66b9ef60ae4c41dd9f0683c1 877817 krb5_1.6.dfsg.4~beta1-5ubuntu2.diff.gz
Files:
859ad8b512f69814944ef7e3c93359c8 1662 net standard krb5_1.6.dfsg.4~beta1-5ubuntu2.dsc
d94c3fd2bbbdb4d4bc3f8a7fc0b9b6b4 877817 net standard krb5_1.6.dfsg.4~beta1-5ubuntu2.diff.gz
Original-Maintainer: Sam Hartman <hartmans at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Kees Cook <kees at outflux.net>
iEYEARECAAYFAknbuPgACgkQH/9LqRcGPm3jFQCgg88aTkGzMAeFSNfa9F07faDS
SsEAn0sIg+2O9TdQAXxyu40Ogwl0X2G0
=zk3a
-----END PGP SIGNATURE-----
More information about the Jaunty-changes
mailing list