[ubuntu/lucid-security] krb5, krb5_1.8.1+dfsg-2ubuntu0.10_sparc_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.10_armel_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.10_i386_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.10_powerpc_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.10_ia64_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.10_amd64_translations.tar.gz 1.8.1+dfsg-2ubuntu0.10 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Tue Oct 18 22:04:28 UTC 2011
krb5 (1.8.1+dfsg-2ubuntu0.10) lucid-security; urgency=low
* SECURITY UPDATE: fix multiple kdc DoS issues:
- db2/lockout.c, ldap/libkdb_ldap/ldap_principal2.c,
ldap/libkdb_ldap/lockout.c:
+ more strict checking for null pointers
+ disable assert and return when db is locked
+ applied inline from upstream
- CVE-2011-1528 and CVE-2011-1529
- MITKRB5-SA-2011-006
Date: Tue, 11 Oct 2011 06:52:21 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/krb5/1.8.1+dfsg-2ubuntu0.10
-------------- next part --------------
Format: 1.8
Date: Tue, 11 Oct 2011 06:52:21 -0700
Source: krb5
Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc libkrb5-3 libgssapi-krb5-2 libgssrpc4 libkadm5srv-mit7 libkadm5clnt-mit7 libk5crypto3 libkdb5-4 libkrb5support0
Architecture: source
Version: 1.8.1+dfsg-2ubuntu0.10
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-doc - Documentation for MIT Kerberos
krb5-kdc - MIT Kerberos key server (KDC)
krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
krb5-multidev - Development files for MIT Kerberos without Heimdal conflict
krb5-pkinit - PKINIT plugin for MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC
libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library
libkadm5clnt-mit7 - MIT Kerberos runtime libraries - Administration Clients
libkadm5srv-mit7 - MIT Kerberos runtime libraries - KDC and Admin Server
libkdb5-4 - MIT Kerberos runtime libraries - Kerberos database
libkrb5-3 - MIT Kerberos runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb5support0 - MIT Kerberos runtime libraries - Support library
Changes:
krb5 (1.8.1+dfsg-2ubuntu0.10) lucid-security; urgency=low
.
* SECURITY UPDATE: fix multiple kdc DoS issues:
- db2/lockout.c, ldap/libkdb_ldap/ldap_principal2.c,
ldap/libkdb_ldap/lockout.c:
+ more strict checking for null pointers
+ disable assert and return when db is locked
+ applied inline from upstream
- CVE-2011-1528 and CVE-2011-1529
- MITKRB5-SA-2011-006
Checksums-Sha1:
ecc1ff42ed6b594a9ae359dac30794c12befc5e7 2327 krb5_1.8.1+dfsg-2ubuntu0.10.dsc
8945f7494a90ad5f9809ccb3661aa10c1e9aa45d 133876 krb5_1.8.1+dfsg-2ubuntu0.10.diff.gz
Checksums-Sha256:
8d6e717b419370e1776da8433c310c97570b043b36fc6b7c299961651be81eaa 2327 krb5_1.8.1+dfsg-2ubuntu0.10.dsc
e4b81c760becff93063eb7084305eb47f88ef8b562f52cf518230f2e9599a318 133876 krb5_1.8.1+dfsg-2ubuntu0.10.diff.gz
Files:
976f6b7db4884c58e9b9a59c1a5f4351 2327 net standard krb5_1.8.1+dfsg-2ubuntu0.10.dsc
2b8e865db38fef7050417557cc442b27 133876 net standard krb5_1.8.1+dfsg-2ubuntu0.10.diff.gz
Original-Maintainer: Sam Hartman <hartmans at debian.org>
More information about the Lucid-changes
mailing list