-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 09 Feb 2025 21:43:13 +0000 Source: krb5 Architecture: source Version: 1.18.3-6+deb11u6 Distribution: bullseye-security Urgency: high Maintainer: Sam Hartman <hartmans@debian.org> Changed-By: Bastien Roucariès <rouca@debian.org> Closes: 1094730 Changes: krb5 (1.18.3-6+deb11u6) bullseye-security; urgency=high . * Fix CVE-2025-24528: Prevent overflow when calculating ulog block size. An authenticated attacker can cause kadmind to write beyond the end of the mapped region for the iprop log file, likely causing a process crash. (Closes: #1094730) * Add Salsa CI Checksums-Sha1: 075bc5ed2873ea93359052e9b27f1e6750cd2548 3814 krb5_1.18.3-6+deb11u6.dsc fdbb31fab5bdea24fc464d09bdbc245740648f1a 8715312 krb5_1.18.3.orig.tar.gz 909b9c68601cf999cd2697c83a0f56efd0faba6d 833 krb5_1.18.3.orig.tar.gz.asc 01f516536a35a459e525992a50aaa060321d17a8 115792 krb5_1.18.3-6+deb11u6.debian.tar.xz 28384db0da4faade6b3586214fce417022c9ce59 21503 krb5_1.18.3-6+deb11u6_amd64.buildinfo Checksums-Sha256: a9f51d05d8d5d9aa2263c86648ec9b10ccee6b191cb0b3fb9210e2fb1d356936 3814 krb5_1.18.3-6+deb11u6.dsc e61783c292b5efd9afb45c555a80dd267ac67eebabca42185362bee6c4fbd719 8715312 krb5_1.18.3.orig.tar.gz ded19808ba7320ad0bb3ddfb5202845b2ff36a50613af7832f78dd3cb4437419 833 krb5_1.18.3.orig.tar.gz.asc 51892c39de59436b34b9fe36b1620d9c14e57f9eb473a1809f19693750b9ffd3 115792 krb5_1.18.3-6+deb11u6.debian.tar.xz 28b905cb4225a238df2422e1780d0685beb0f7ab8d70a601e82c2b417d81cce0 21503 krb5_1.18.3-6+deb11u6_amd64.buildinfo Files: 0cc466109a3a173336254db3d65eb670 3814 net optional krb5_1.18.3-6+deb11u6.dsc a64e8018a7572e0b4bd477c745129ffc 8715312 net optional krb5_1.18.3.orig.tar.gz bca804e12e8dc2de6930e916cd7a2ce3 833 net optional krb5_1.18.3.orig.tar.gz.asc d408e8293ed5cdfb0d663722ccdc5db1 115792 net optional krb5_1.18.3-6+deb11u6.debian.tar.xz 71e5c291678b5925db0a11fe219af982 21503 net optional krb5_1.18.3-6+deb11u6_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEXQGHuUCiRbrXsPVqADoaLapBCF8FAme7e7oACgkQADoaLapB CF/BnBAApSXBmiX0vmba42FPpwfmcjKQOhCpzWABjwovTfDfw98SRhQiHznci53N qcvl5cXuAz9jbyuzwQQt8aotfUgpKTwp4bYhyAI2qZw7l5W15To3zAe6hDv/urRh 3lM7oiqYK7dRHb4na32rOrBT0kKlvdc/y5/YmnGd8CvvHo8PPPN+4dDyc/Ya9Y8H bji4Wz15+JdyUCdksIUwA84O/IgbkMFwq2hu16J0/+QcPk1FK/H2Sau0FgArk8Yc FZwVXDGZF56T2ZOvnrKaceHaz0oz/Fuqua/PPqmcGoEnx05k9j6oaJGNO2078uqM FJ5qV+PA4vjV6IhIHRJwuCxRx9C9G2J45nKv4jnYKzGD9ejP58qrL0Lrb3zpKMWJ sZ2Kg7XZ/7RDYqZx2MDhheB44l9KkL+iN55wvFevU4K9Xh0i2tQbMJG6g6RlejbQ Q/y4Wl6kQrxSNQebwzS7oJXKSMX4zrYZdC1HdEl/L1AQXXkkiJE6S9pbl53/Wvnt gBqissm6xf0YSt/oFuwo1dK3NtzBfVxd2iM+qsS8krp/Qb8E3aCLLXcpunG/4XYc qHYVajNgpSOrkAePnrHBX8RUVaULWKx+Lj2tbnmaPkjUq+4dgUNsdIr1q2TYbR9g bKDxjT2RCVLe9NlekrEAd5K9kCYKlB5zzFp2ysvpe+YiEpwNmNI= =LzML -----END PGP SIGNATURE-----