Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted krb5 1.18.3-6+deb11u6 (source) into oldstable-security
Date: Sun, 23 Feb 2025 20:00:23 +0000
Signed by: Bastien ROUCARIÈS <rouca@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 09 Feb 2025 21:43:13 +0000
Source: krb5
Architecture: source
Version: 1.18.3-6+deb11u6
Distribution: bullseye-security
Urgency: high
Maintainer: Sam Hartman <hartmans@debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Closes: 1094730
Changes:
 krb5 (1.18.3-6+deb11u6) bullseye-security; urgency=high
 .
   * Fix CVE-2025-24528: Prevent overflow when calculating
     ulog block size.
     An authenticated attacker can cause kadmind to write beyond
     the end of the mapped region for the iprop log file,
     likely causing a process crash.
     (Closes: #1094730)
   * Add Salsa CI
Checksums-Sha1:
 075bc5ed2873ea93359052e9b27f1e6750cd2548 3814 krb5_1.18.3-6+deb11u6.dsc
 fdbb31fab5bdea24fc464d09bdbc245740648f1a 8715312 krb5_1.18.3.orig.tar.gz
 909b9c68601cf999cd2697c83a0f56efd0faba6d 833 krb5_1.18.3.orig.tar.gz.asc
 01f516536a35a459e525992a50aaa060321d17a8 115792 krb5_1.18.3-6+deb11u6.debian.tar.xz
 28384db0da4faade6b3586214fce417022c9ce59 21503 krb5_1.18.3-6+deb11u6_amd64.buildinfo
Checksums-Sha256:
 a9f51d05d8d5d9aa2263c86648ec9b10ccee6b191cb0b3fb9210e2fb1d356936 3814 krb5_1.18.3-6+deb11u6.dsc
 e61783c292b5efd9afb45c555a80dd267ac67eebabca42185362bee6c4fbd719 8715312 krb5_1.18.3.orig.tar.gz
 ded19808ba7320ad0bb3ddfb5202845b2ff36a50613af7832f78dd3cb4437419 833 krb5_1.18.3.orig.tar.gz.asc
 51892c39de59436b34b9fe36b1620d9c14e57f9eb473a1809f19693750b9ffd3 115792 krb5_1.18.3-6+deb11u6.debian.tar.xz
 28b905cb4225a238df2422e1780d0685beb0f7ab8d70a601e82c2b417d81cce0 21503 krb5_1.18.3-6+deb11u6_amd64.buildinfo
Files:
 0cc466109a3a173336254db3d65eb670 3814 net optional krb5_1.18.3-6+deb11u6.dsc
 a64e8018a7572e0b4bd477c745129ffc 8715312 net optional krb5_1.18.3.orig.tar.gz
 bca804e12e8dc2de6930e916cd7a2ce3 833 net optional krb5_1.18.3.orig.tar.gz.asc
 d408e8293ed5cdfb0d663722ccdc5db1 115792 net optional krb5_1.18.3-6+deb11u6.debian.tar.xz
 71e5c291678b5925db0a11fe219af982 21503 net optional krb5_1.18.3-6+deb11u6_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEXQGHuUCiRbrXsPVqADoaLapBCF8FAme7e7oACgkQADoaLapB
CF/BnBAApSXBmiX0vmba42FPpwfmcjKQOhCpzWABjwovTfDfw98SRhQiHznci53N
qcvl5cXuAz9jbyuzwQQt8aotfUgpKTwp4bYhyAI2qZw7l5W15To3zAe6hDv/urRh
3lM7oiqYK7dRHb4na32rOrBT0kKlvdc/y5/YmnGd8CvvHo8PPPN+4dDyc/Ya9Y8H
bji4Wz15+JdyUCdksIUwA84O/IgbkMFwq2hu16J0/+QcPk1FK/H2Sau0FgArk8Yc
FZwVXDGZF56T2ZOvnrKaceHaz0oz/Fuqua/PPqmcGoEnx05k9j6oaJGNO2078uqM
FJ5qV+PA4vjV6IhIHRJwuCxRx9C9G2J45nKv4jnYKzGD9ejP58qrL0Lrb3zpKMWJ
sZ2Kg7XZ/7RDYqZx2MDhheB44l9KkL+iN55wvFevU4K9Xh0i2tQbMJG6g6RlejbQ
Q/y4Wl6kQrxSNQebwzS7oJXKSMX4zrYZdC1HdEl/L1AQXXkkiJE6S9pbl53/Wvnt
gBqissm6xf0YSt/oFuwo1dK3NtzBfVxd2iM+qsS8krp/Qb8E3aCLLXcpunG/4XYc
qHYVajNgpSOrkAePnrHBX8RUVaULWKx+Lj2tbnmaPkjUq+4dgUNsdIr1q2TYbR9g
bKDxjT2RCVLe9NlekrEAd5K9kCYKlB5zzFp2ysvpe+YiEpwNmNI=
=LzML
-----END PGP SIGNATURE-----

News for package krb5