[ubuntu/natty-security] krb5, krb5_1.8.3+dfsg-5ubuntu2.2_amd64_translations.tar.gz, krb5_1.8.3+dfsg-5ubuntu2.2_powerpc_translations.tar.gz, krb5_1.8.3+dfsg-5ubuntu2.2_armel_translations.tar.gz, krb5_1.8.3+dfsg-5ubuntu2.2_i386_translations.tar.gz 1.8.3+dfsg-5ubuntu2.2 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Tue Oct 18 22:03:49 UTC 2011
krb5 (1.8.3+dfsg-5ubuntu2.2) natty-security; urgency=low
* SECURITY UPDATE: fix multiple kdc DoS issues:
- db2/lockout.c, ldap/libkdb_ldap/ldap_principal2.c,
ldap/libkdb_ldap/lockout.c:
+ more strict checking for null pointers
+ disable assert iand return when db is locked
+ applied inline
- CVE-2011-1528 and CVE-2011-1529
- MITKRB5-SA-2011-006
Date: Mon, 10 Oct 2011 15:23:12 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/krb5/1.8.3+dfsg-5ubuntu2.2
-------------- next part --------------
Format: 1.8
Date: Mon, 10 Oct 2011 15:23:12 -0700
Source: krb5
Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc libkrb5-3 libgssapi-krb5-2 libgssrpc4 libkadm5srv-mit7 libkadm5clnt-mit7 libk5crypto3 libkdb5-4 libkrb5support0 libkrb53
Architecture: source
Version: 1.8.3+dfsg-5ubuntu2.2
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-doc - Documentation for MIT Kerberos
krb5-kdc - MIT Kerberos key server (KDC)
krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
krb5-multidev - Development files for MIT Kerberos without Heimdal conflict
krb5-pkinit - PKINIT plugin for MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC
libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library
libkadm5clnt-mit7 - MIT Kerberos runtime libraries - Administration Clients
libkadm5srv-mit7 - MIT Kerberos runtime libraries - KDC and Admin Server
libkdb5-4 - MIT Kerberos runtime libraries - Kerberos database
libkrb5-3 - MIT Kerberos runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb53 - transitional package for MIT Kerberos libraries
libkrb5support0 - MIT Kerberos runtime libraries - Support library
Changes:
krb5 (1.8.3+dfsg-5ubuntu2.2) natty-security; urgency=low
.
* SECURITY UPDATE: fix multiple kdc DoS issues:
- db2/lockout.c, ldap/libkdb_ldap/ldap_principal2.c,
ldap/libkdb_ldap/lockout.c:
+ more strict checking for null pointers
+ disable assert iand return when db is locked
+ applied inline
- CVE-2011-1528 and CVE-2011-1529
- MITKRB5-SA-2011-006
Checksums-Sha1:
d2dc88b4cb17eed22e799cb5db57ddcbe1d54cdf 2344 krb5_1.8.3+dfsg-5ubuntu2.2.dsc
cd27fc3b7054bec8fa62cf1b1b78baef65523536 108601 krb5_1.8.3+dfsg-5ubuntu2.2.diff.gz
Checksums-Sha256:
99358fd79d8772bb71699326379e12a9f1145834dc0602194159b0c19591ad9e 2344 krb5_1.8.3+dfsg-5ubuntu2.2.dsc
25086dd889ebb07a0fc0923e566332242cc924de4cc9fa6d06fba1fc73c987fe 108601 krb5_1.8.3+dfsg-5ubuntu2.2.diff.gz
Files:
0d344d029cb22184df4805e61c3141c8 2344 net standard krb5_1.8.3+dfsg-5ubuntu2.2.dsc
76f68f57d375155e42735c1aa8215e11 108601 net standard krb5_1.8.3+dfsg-5ubuntu2.2.diff.gz
Original-Maintainer: Sam Hartman <hartmans at debian.org>
More information about the Natty-changes
mailing list