-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 22 Mar 2020 21:22:06 -0700
Source: libpam-krb5
Binary: libpam-krb5 libpam-heimdal
Architecture: source amd64
Version: 4.7-4+deb9u1
Distribution: stretch-security
Urgency: high
Maintainer: Russ Allbery <rra@debian.org>
Changed-By: Russ Allbery <rra@debian.org>
Description:
libpam-heimdal - PAM module for Heimdal Kerberos
libpam-krb5 - PAM module for MIT Kerberos
Changes:
libpam-krb5 (4.7-4+deb9u1) stretch-security; urgency=high
.
* SECURITY: Fix potential one-byte buffer overflow when the underlying
Kerberos library initiates prompting (such as for PKINIT or when the
no_prompt PAM option is set). (CVE-2020-10595)
Checksums-Sha1:
cf0e3aa8e9f758c7be704b268fc5cbf19fa72d15 1731 libpam-krb5_4.7-4+deb9u1.dsc
a28bbd0e592cd2f44a8acb949ff5cf38acba191c 381156 libpam-krb5_4.7.orig.tar.xz
8f1a442e739234f2cb25a4632c76eeb258cbbae7 24852 libpam-krb5_4.7-4+deb9u1.debian.tar.xz
2f049037c505859ecec44cce040431d925550772 91536 libpam-heimdal-dbgsym_4.7-4+deb9u1_amd64.deb
bb961b87480aaa05efd28728d3ccf281242b345e 85092 libpam-heimdal_4.7-4+deb9u1_amd64.deb
36b65690a05a2e2ae49f84ad12ee9288003ea461 68440 libpam-krb5-dbgsym_4.7-4+deb9u1_amd64.deb
581d62521a00af778673fbaeddeb8c7d3322ddfb 8490 libpam-krb5_4.7-4+deb9u1_amd64.buildinfo
294b4f24a621a2afb540dc7b986d09de0c30a77d 88142 libpam-krb5_4.7-4+deb9u1_amd64.deb
Checksums-Sha256:
14e0a83b131d27e4059e9321270c6b71087607374b9cb88d5f8db5e198d22bcd 1731 libpam-krb5_4.7-4+deb9u1.dsc
2421ad5ee0ff7c6c7c6094babaf1a3c5c0f7f2c33e22c50a8735df791d436e29 381156 libpam-krb5_4.7.orig.tar.xz
15f32f16d617dee98b679f0b4bdd795195c414a34596758213fc78eddd7d1e43 24852 libpam-krb5_4.7-4+deb9u1.debian.tar.xz
040e0f9abccd27511363ac7b42166a56b10aa53325ce336c08fe1d5efcc3b6b6 91536 libpam-heimdal-dbgsym_4.7-4+deb9u1_amd64.deb
10f27e1dc0985df2cf8dad2b86739b0ef0a17b29da94faa36558164b44b76639 85092 libpam-heimdal_4.7-4+deb9u1_amd64.deb
70949e738ca38cd1f0db36bcbd48bce5105b4d210e9515f3d53164d136b8789f 68440 libpam-krb5-dbgsym_4.7-4+deb9u1_amd64.deb
bbf95a795ca0ee9d28359a78819446d6806f1d7df62099e12543079590eaab0a 8490 libpam-krb5_4.7-4+deb9u1_amd64.buildinfo
c3d221fc752826c5449ea2d5adacdf1b0b71f0dc0483a92433b2d48923783466 88142 libpam-krb5_4.7-4+deb9u1_amd64.deb
Files:
68b2dfb5901e54bef95805302f943250 1731 admin optional libpam-krb5_4.7-4+deb9u1.dsc
60085cb7bbc5b0416d5b34adb7e28c41 381156 admin optional libpam-krb5_4.7.orig.tar.xz
cdf568557393c734b6b3b6ac2c9b0ca6 24852 admin optional libpam-krb5_4.7-4+deb9u1.debian.tar.xz
ee2b5f8d6beaec8e8b134427650b4a54 91536 debug extra libpam-heimdal-dbgsym_4.7-4+deb9u1_amd64.deb
08936b74d96391e47e0ff2549b0f5861 85092 admin extra libpam-heimdal_4.7-4+deb9u1_amd64.deb
d5a5a94f4a25a7683dfce9b3fb873a2d 68440 debug extra libpam-krb5-dbgsym_4.7-4+deb9u1_amd64.deb
0bac4eb551194f05f8ffd8138a4df138 8490 admin optional libpam-krb5_4.7-4+deb9u1_amd64.buildinfo
59c28c3997c8dec1a5d09d3f33d10977 88142 admin optional libpam-krb5_4.7-4+deb9u1_amd64.deb
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEE1zk0tJZ0z1zNmsJ4fYAxXFc23nUFAl6A+KsACgkQfYAxXFc2
3nUy3Qf/XBOl8pE6gXcLm6i1kv9kISDoIMW3PDkU+dCatg2kCxtDNjeGuFpcEWls
qGLvl1z6j0F6P85clSccxPtgq/E6ylmU62sPTMMKhx02KRHpCFtW6wFmAgb0p8ps
sfHKCD4qm1D3tL4hlIllk029nHOKR6q8pBCeMPU9FDVpaaZP+7ELk5UZNuUJJO+G
53Nv/ylCCQDx18w6K43Jt2TYKK1cnuQnlqUgtId3WwoY+6C2rDbUGq2ddJ1dq+vr
YvuRhlYCMEq2dnat12i09zmJuRxKCSEivW6QpciTjTDWjPiEdE/iKUlho4WYxhdq
sXgu2v1tYL1vWmuVVw2hflwpS2dMYw==
=slnb
-----END PGP SIGNATURE-----
