[ubuntu/lucid-security] krb5, krb5_1.8.1+dfsg-2ubuntu0.11_i386_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.11_ia64_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.11_powerpc_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.11_amd64_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.11_armel_translations.tar.gz, krb5_1.8.1+dfsg-2ubuntu0.11_sparc_translations.tar.gz 1.8.1+dfsg-2ubuntu0.11 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Tue Jul 31 18:35:12 UTC 2012


krb5 (1.8.1+dfsg-2ubuntu0.11) lucid-security; urgency=low

  * SECURITY UPDATE: KDC heap corruption and crash vulnerabilities
    - src/kdc/kdc_preauth.c, src/kdc/kdc_util.c,
      src/lib/kdb/kdb_default.c: initialize pointers both at allocation
      and assignment time
    - CVE-2012-1015
  * SECURITY UPDATE: denial of service in kadmind (LP: #1009422)
    - src/lib/kadm5/srv/svr_principal.c: check for null password
    - CVE-2012-1013

Date: Mon, 23 Jul 2012 22:16:20 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/krb5/1.8.1+dfsg-2ubuntu0.11
-------------- next part --------------
Format: 1.8
Date: Mon, 23 Jul 2012 22:16:20 -0700
Source: krb5
Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc libkrb5-3 libgssapi-krb5-2 libgssrpc4 libkadm5srv-mit7 libkadm5clnt-mit7 libk5crypto3 libkdb5-4 libkrb5support0
Architecture: source
Version: 1.8.1+dfsg-2ubuntu0.11
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 krb5-admin-server - MIT Kerberos master server (kadmind)
 krb5-doc   - Documentation for MIT Kerberos
 krb5-kdc   - MIT Kerberos key server (KDC)
 krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
 krb5-multidev - Development files for MIT Kerberos without Heimdal conflict
 krb5-pkinit - PKINIT plugin for MIT Kerberos
 krb5-user  - Basic programs to authenticate using MIT Kerberos
 libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
 libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC
 libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library
 libkadm5clnt-mit7 - MIT Kerberos runtime libraries - Administration Clients
 libkadm5srv-mit7 - MIT Kerberos runtime libraries - KDC and Admin Server
 libkdb5-4  - MIT Kerberos runtime libraries - Kerberos database
 libkrb5-3  - MIT Kerberos runtime libraries
 libkrb5-dbg - Debugging files for MIT Kerberos
 libkrb5-dev - Headers and development libraries for MIT Kerberos
 libkrb5support0 - MIT Kerberos runtime libraries - Support library
Launchpad-Bugs-Fixed: 1009422
Changes: 
 krb5 (1.8.1+dfsg-2ubuntu0.11) lucid-security; urgency=low
 .
   * SECURITY UPDATE: KDC heap corruption and crash vulnerabilities
     - src/kdc/kdc_preauth.c, src/kdc/kdc_util.c,
       src/lib/kdb/kdb_default.c: initialize pointers both at allocation
       and assignment time
     - CVE-2012-1015
   * SECURITY UPDATE: denial of service in kadmind (LP: #1009422)
     - src/lib/kadm5/srv/svr_principal.c: check for null password
     - CVE-2012-1013
Checksums-Sha1: 
 f5bc22d9377f3a2510948db76bc6031bff5c7525 2327 krb5_1.8.1+dfsg-2ubuntu0.11.dsc
 1db0816e187f3d125f54b7dca8affd8496ed2688 137230 krb5_1.8.1+dfsg-2ubuntu0.11.diff.gz
Checksums-Sha256: 
 33690d7c3ca9b43f71e7da75ab774919f7a4f2e5952043201a0527db927daf6a 2327 krb5_1.8.1+dfsg-2ubuntu0.11.dsc
 7b05d0255c0a47ac485cd4afdf44717a3d2ba6bcab86a43a1d2752b9fbb92b0c 137230 krb5_1.8.1+dfsg-2ubuntu0.11.diff.gz
Files: 
 81e5b31723fa10cd672406a68204702e 2327 net standard krb5_1.8.1+dfsg-2ubuntu0.11.dsc
 b8be74fd5a66a69e6b3e370c0d65bce3 137230 net standard krb5_1.8.1+dfsg-2ubuntu0.11.diff.gz
Original-Maintainer: Sam Hartman <hartmans at debian.org>


More information about the Lucid-changes mailing list