[ubuntu/natty-security] krb5, krb5_1.8.3+dfsg-5ubuntu2.3_armel_translations.tar.gz, krb5_1.8.3+dfsg-5ubuntu2.3_powerpc_translations.tar.gz, krb5_1.8.3+dfsg-5ubuntu2.3_amd64_translations.tar.gz, krb5_1.8.3+dfsg-5ubuntu2.3_i386_translations.tar.gz 1.8.3+dfsg-5ubuntu2.3 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Tue Jul 31 18:34:41 UTC 2012
krb5 (1.8.3+dfsg-5ubuntu2.3) natty-security; urgency=low
* SECURITY UPDATE: KDC heap corruption and crash vulnerabilities
- src/kdc/kdc_preauth.c, src/kdc/kdc_util.c,
src/lib/kdb/kdb_default.c: initialize pointers both at allocation
and assignment time
- CVE-2012-1015
* SECURITY UPDATE: denial of service in kadmind (LP: #1009422)
- src/lib/kadm5/srv/svr_principal.c: check for null password
- CVE-2012-1013
Date: Mon, 23 Jul 2012 22:15:03 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/krb5/1.8.3+dfsg-5ubuntu2.3
-------------- next part --------------
Format: 1.8
Date: Mon, 23 Jul 2012 22:15:03 -0700
Source: krb5
Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc libkrb5-3 libgssapi-krb5-2 libgssrpc4 libkadm5srv-mit7 libkadm5clnt-mit7 libk5crypto3 libkdb5-4 libkrb5support0 libkrb53
Architecture: source
Version: 1.8.3+dfsg-5ubuntu2.3
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-doc - Documentation for MIT Kerberos
krb5-kdc - MIT Kerberos key server (KDC)
krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
krb5-multidev - Development files for MIT Kerberos without Heimdal conflict
krb5-pkinit - PKINIT plugin for MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC
libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library
libkadm5clnt-mit7 - MIT Kerberos runtime libraries - Administration Clients
libkadm5srv-mit7 - MIT Kerberos runtime libraries - KDC and Admin Server
libkdb5-4 - MIT Kerberos runtime libraries - Kerberos database
libkrb5-3 - MIT Kerberos runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb53 - transitional package for MIT Kerberos libraries
libkrb5support0 - MIT Kerberos runtime libraries - Support library
Launchpad-Bugs-Fixed: 1009422
Changes:
krb5 (1.8.3+dfsg-5ubuntu2.3) natty-security; urgency=low
.
* SECURITY UPDATE: KDC heap corruption and crash vulnerabilities
- src/kdc/kdc_preauth.c, src/kdc/kdc_util.c,
src/lib/kdb/kdb_default.c: initialize pointers both at allocation
and assignment time
- CVE-2012-1015
* SECURITY UPDATE: denial of service in kadmind (LP: #1009422)
- src/lib/kadm5/srv/svr_principal.c: check for null password
- CVE-2012-1013
Checksums-Sha1:
33f3913b6e882645137099a477a9eaf32c2b2c0c 2344 krb5_1.8.3+dfsg-5ubuntu2.3.dsc
d25c129a70ab1e5ad7d332e1697e7a99ff22bb86 111903 krb5_1.8.3+dfsg-5ubuntu2.3.diff.gz
Checksums-Sha256:
268e684e46382e9d8003624bc25c944a6b834e877430a130cd3f9c8cb2174b19 2344 krb5_1.8.3+dfsg-5ubuntu2.3.dsc
da3451670f1eda273cc6a18a04c9d74621696c00e813fac1466dc41c89a92ea5 111903 krb5_1.8.3+dfsg-5ubuntu2.3.diff.gz
Files:
7e3bfeb9a921938a34af85dec83813de 2344 net standard krb5_1.8.3+dfsg-5ubuntu2.3.dsc
4ed909284698b3992bd98e6aa1061547 111903 net standard krb5_1.8.3+dfsg-5ubuntu2.3.diff.gz
Original-Maintainer: Sam Hartman <hartmans at debian.org>
More information about the Natty-changes
mailing list