-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Mon, 09 Feb 2009 15:04:13 -0800 Source: libpam-heimdal Binary: libpam-heimdal Architecture: source i386 Version: 2.5-1etch1 Distribution: stable-security Urgency: high Maintainer: Matthijs Mohlmann <[email protected]> Changed-By: Russ Allbery <[email protected]> Description: libpam-heimdal - PAM module for Heimdal Kerberos 5 Changes: libpam-heimdal (2.5-1etch1) stable-security; urgency=high . * Non-maintainer security upload. * SECURITY (CVE-2009-0361): Protect against applications calling pam_setcred with PAM_REINITIALIZE_CREDS as root in a setuid context. This API call is designed to reinitialize an existing Kerberos ticket cache and therefore trusts the KRB5CCNAME environment variable, but in a setuid context, this may allow overwriting arbitrary files. Files: 09e39eb1552950761fdcc51babceef11 699 net optional libpam-heimdal_2.5-1etch1.dsc a80c66fcf0c48608abfb5ff0c443ab94 117834 net optional libpam-heimdal_2.5.orig.tar.gz 3e178b9617aadc2e030c07fec659330c 8208 net optional libpam-heimdal_2.5-1etch1.diff.gz c1b56b35fb35c0d700de6ea53d753a4e 37652 net optional libpam-heimdal_2.5-1etch1_i386.deb
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkmRKDwACgkQ+YXjQAr8dHaDIACfXEVfQ6gxAsAQilk9Zt+XySZn Jh0AoJqb4OJ8I3Y1zlKD4S7wruWPvFtv =irCx -----END PGP SIGNATURE----- Accepted: libpam-heimdal_2.5-1etch1.diff.gz to pool/main/libp/libpam-heimdal/libpam-heimdal_2.5-1etch1.diff.gz libpam-heimdal_2.5-1etch1.dsc to pool/main/libp/libpam-heimdal/libpam-heimdal_2.5-1etch1.dsc libpam-heimdal_2.5-1etch1_i386.deb to pool/main/libp/libpam-heimdal/libpam-heimdal_2.5-1etch1_i386.deb -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
