krb5 (1.8.1+dfsg-5ubuntu0.2) maverick-security; urgency=low
* SECURITY UPDATE: message forgery and privilege escalation via
unacceptable checksums
- src/lib/crypto/krb/dk/derive.c, src/lib/crypto/krb/keyed_checksum_types.c,
src/lib/gssapi/krb5/util_crypt.c, src/lib/krb5/krb/mk_safe.c,
src/lib/krb5/krb/pac.c, src/lib/krb5/krb/preauth2.c,
src/plugins/preauth/pkinit/pkinit_srv.c: patched inline, thanks to
upstream.
- CVE-2010-1323
- CVE-2010-1324
- CVE-2010-4020
- MITKRB5-SA-2010-007
Date: Wed, 08 Dec 2010 09:11:44 -0500
Changed-By: Marc Deslauriers <[email protected]>
Maintainer: Ubuntu Core Developers <[email protected]>
https://launchpad.net/ubuntu/maverick/+source/krb5/1.8.1+dfsg-5ubuntu0.2
Format: 1.8
Date: Wed, 08 Dec 2010 09:11:44 -0500
Source: krb5
Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev
libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc libkrb5-3 libgssapi-krb5-2
libgssrpc4 libkadm5srv-mit7 libkadm5clnt-mit7 libk5crypto3 libkdb5-4
libkrb5support0
Architecture: source
Version: 1.8.1+dfsg-5ubuntu0.2
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Core Developers <[email protected]>
Changed-By: Marc Deslauriers <[email protected]>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-doc - Documentation for MIT Kerberos
krb5-kdc - MIT Kerberos key server (KDC)
krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
krb5-multidev - Development files for MIT Kerberos without Heimdal conflict
krb5-pkinit - PKINIT plugin for MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC
libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library
libkadm5clnt-mit7 - MIT Kerberos runtime libraries - Administration Clients
libkadm5srv-mit7 - MIT Kerberos runtime libraries - KDC and Admin Server
libkdb5-4 - MIT Kerberos runtime libraries - Kerberos database
libkrb5-3 - MIT Kerberos runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb5support0 - MIT Kerberos runtime libraries - Support library
Changes:
krb5 (1.8.1+dfsg-5ubuntu0.2) maverick-security; urgency=low
.
* SECURITY UPDATE: message forgery and privilege escalation via
unacceptable checksums
- src/lib/crypto/krb/dk/derive.c,
src/lib/crypto/krb/keyed_checksum_types.c,
src/lib/gssapi/krb5/util_crypt.c, src/lib/krb5/krb/mk_safe.c,
src/lib/krb5/krb/pac.c, src/lib/krb5/krb/preauth2.c,
src/plugins/preauth/pkinit/pkinit_srv.c: patched inline, thanks to
upstream.
- CVE-2010-1323
- CVE-2010-1324
- CVE-2010-4020
- MITKRB5-SA-2010-007
Checksums-Sha1:
e3d70c1ad3f0e42d2afc28ac52f18d118430dc3d 2328 krb5_1.8.1+dfsg-5ubuntu0.2.dsc
cc12d22094f9ed9ef4c38239cc2d07516d14cd35 129834
krb5_1.8.1+dfsg-5ubuntu0.2.diff.gz
Checksums-Sha256:
4f77709138bb3fd52eb352cf0406c210f81b387f48ed21379f4575e64b23bbac 2328
krb5_1.8.1+dfsg-5ubuntu0.2.dsc
69aaab92476c88216ac3365ef6b3334ddff7957afb3a29276c314a3a302dffe8 129834
krb5_1.8.1+dfsg-5ubuntu0.2.diff.gz
Files:
40408ae18b6b5a0ae13790df5cd469a0 2328 net standard
krb5_1.8.1+dfsg-5ubuntu0.2.dsc
fcfd77e5b32d960682a816e2072054a7 129834 net standard
krb5_1.8.1+dfsg-5ubuntu0.2.diff.gz
Original-Maintainer: Sam Hartman <[email protected]>
--
Maverick-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/maverick-changes
