-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 19 Jun 2026 08:30:16 -0600 Source: krb5 Architecture: source Version: 1.22.1-3 Distribution: unstable Urgency: medium Maintainer: Sam Hartman <hartmans@debian.org> Changed-By: Sam Hartman <hartmans@debian.org> Closes: 1128877 1138466 1139821 Changes: krb5 (1.22.1-3) unstable; urgency=medium . [ Emmanuel Arias ] * CVE-2026-11850: Prevent read overrun in libkdb_ldap (Closes: #1139821). . [ Sam Hartman ] * Fix C23 use of strchr, Closes: #1128877 * Remove lintian tag that ldap plugin is linked against libc6; no longer needed * Upstream patch for OpenSSL 4.0 compatibility, Closes: #1138466 * Upstream commit f5bbfa4 to use openssl facilities to verify certificates; needed to avoid discarding const qualifier from Openssl 4.0 patch Checksums-Sha1: 845bb8aaa01fff2fc5fb696c6d662d3f0ffbb32e 3397 krb5_1.22.1-3.dsc 1d8d7d0ebabe58a4c8fd73e994b9185fddeb70d6 111476 krb5_1.22.1-3.debian.tar.xz a0b70184d6328b4ef43b7cd07566dcc6f67bc8a0 5430 krb5_1.22.1-3_source.buildinfo Checksums-Sha256: b619af9a52f00c4888e1f53f38d5e147e8c518d1c5b0cda120873fa4ebd4ea77 3397 krb5_1.22.1-3.dsc 519ad7537260ebc450a678b38f00c8deaf0e05d848d0e5cfeef1ddb154663ba8 111476 krb5_1.22.1-3.debian.tar.xz 7920ad149020edb369818ac43505bcf704974c5dadb99e9ccbfe454863d9686f 5430 krb5_1.22.1-3_source.buildinfo Files: 3730d9a46e9231b4d200afaab70ff91b 3397 net optional krb5_1.22.1-3.dsc 43ba1f462c405922f93d52df62f9d3dd 111476 net optional krb5_1.22.1-3.debian.tar.xz 17f3f77631ce2425aa43ae8752a25f1d 5430 net optional krb5_1.22.1-3_source.buildinfo -----BEGIN PGP SIGNATURE----- iHUEARYKAB0WIQSj2jRwbAdKzGY/4uAsbEw8qDeGdAUCajVT1wAKCRAsbEw8qDeG dHx3AQDDJPFs5+Ydjhj6Vo7s4YSNZb1Z2sR42GzteXd4/qYEtgD+PGJW+prLvCa1 JVoMZ0eUAsdEMNEagaUDh0kMJQBp7wQ= =eZWN -----END PGP SIGNATURE-----
