-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 05 Jul 2011 12:01:35 -0400 Source: krb5-appl Binary: krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd Architecture: source amd64 Version: 1:1.0.1-1.1 Distribution: stable-security Urgency: high Maintainer: Sam Hartman <hartmans@debian.org> Changed-By: Sam Hartman <hartmans@debian.org> Description: krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos Changes: krb5-appl (1:1.0.1-1.1) stable-security; urgency=high . * cve-2011-1526, mit-sa-2011-005: Krb5 ftpd fails to set correct group permissions. The ftp daemon always runs with the group permissions of the user it is started as, probably the root group. Checksums-Sha1: a927ba6177b72a9052aa9d58f537c76b5011497c 1970 krb5-appl_1.0.1-1.1.dsc f988c9736840a9272304d7bf2920ac34a10b06d7 632342 krb5-appl_1.0.1.orig.tar.gz d8f1e8f356222fc13994b2cc148b91e13f9424c6 79820 krb5-appl_1.0.1-1.1.debian.tar.gz 9cf693861186ed3e73fba2054e490565082aa16d 180088 krb5-clients_1.0.1-1.1_amd64.deb 2fb49e2dbda65635983a560968e53840a1de8682 62526 krb5-rsh-server_1.0.1-1.1_amd64.deb 03dc6ab68cb39009431805da70491785070262c0 46670 krb5-ftpd_1.0.1-1.1_amd64.deb 47d42bb2f8a936fb86ebb03a4fd1e4eb21180606 53428 krb5-telnetd_1.0.1-1.1_amd64.deb Checksums-Sha256: 52ae0e2a5da118f37f250c51156b158079052bdac000a69246cc2b5904b283c2 1970 krb5-appl_1.0.1-1.1.dsc 3ce9c1540f5080fb528caaba843ad6d6c5d9fdc2c5128a4564c1fd4d85f0b570 632342 krb5-appl_1.0.1.orig.tar.gz 3d2afa4531b95b476d08e6cf8ca75faf8e9a575718495cea687d06476e9cac5d 79820 krb5-appl_1.0.1-1.1.debian.tar.gz c9b912fcd855aba60123f85587edde1c77c793ad1cbafdd500923c251ab28ed0 180088 krb5-clients_1.0.1-1.1_amd64.deb 929c081797dd7eca34782fbeb2faaf8c563b435bf46524fda1ce4d1fd02bd294 62526 krb5-rsh-server_1.0.1-1.1_amd64.deb f8415b19b85577a672c4a48254c6499e4d5bdc67110febec40cde796332f6663 46670 krb5-ftpd_1.0.1-1.1_amd64.deb c01491bffa001bda511143f43572378777db84883c8b2a8804a458a11c7ee576 53428 krb5-telnetd_1.0.1-1.1_amd64.deb Files: f7516dddf721001d68617b515acc89d8 1970 net extra krb5-appl_1.0.1-1.1.dsc 0783a9e7fa8eb3a99346e89ec00e7589 632342 net extra krb5-appl_1.0.1.orig.tar.gz 8beba0da967520f2eeaf287c3d7eba6a 79820 net extra krb5-appl_1.0.1-1.1.debian.tar.gz bffd48250f01cbbe468f4325acb458b3 180088 net optional krb5-clients_1.0.1-1.1_amd64.deb 44f6ac2c3312d84defa020954095891a 62526 net extra krb5-rsh-server_1.0.1-1.1_amd64.deb eb571b6cbb4dacd20e0adc5ce8f112b4 46670 net extra krb5-ftpd_1.0.1-1.1_amd64.deb 971f0529dc89bb901884fddf13783889 53428 net extra krb5-telnetd_1.0.1-1.1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQIcBAEBCAAGBQJOjKUVAAoJEMXOXcLFQs1Z4zwP/1Wk5vP7MVzA+8/vLYNHpAtQ WhJOuppc2Ds2pzs+/TrZd6PgVLS3l8rvXFVgsbWESYGPAGTP6tWxO11T9zg1oTgm nzYCmwpcrhMEvceSEnEqBP6P9xAKnlIO2sqwF5IS7RU0ekRivQS+aEKnT6RbUin/ qxQaid7uKUKR5yCiMaeUMCVuPSvjLOu9kNGFNPN7AOVFCXy4WMKtoh6L2smx5JbJ iXtTZHyGETaZpYR2ezmrSbtjcBOv7IRtA8TvxQ/3b7ZpK7VZlDHmpkarWoNwFePM 8PuctQAHsPJVcXsxY9X5zD3BwX6DlM92NXbbcoU1blLqZK+j5kl6urIH4tjkgypo w2YSer7fRKoHKdTGKCeBa85/TOkb8uR/UplyCtZkhnzvlxeW9A16rgLRSIKagQ+X pGkRYpabk5Gs7A0rvWZ0SNuX5I/hlUJCedKUxr6RmaEkBpMuPFKVBkL1WL/w4dGp vZhWicAcG7dYglvYFCrWTU5xVy75wYn1W6rV2Jq2updN1jXURkVGn1SjxeCbBmLH yt5pq7a0bp0tR/AdH014EAh7xK2bAy6YqOmvUHM9rVwl+Tk77ZBpmQaW9Qj3rHFz ZcpuVYhUojheuDTmbq93hsz/WMqO1J9tKPTL0pPfyH04xF9+JKhh+Ogl2vj5i3VC JOFgZrtKr1hkH+wPkY/N =fIBz -----END PGP SIGNATURE----- Accepted: krb5-appl_1.0.1-1.1.debian.tar.gz to main/k/krb5-appl/krb5-appl_1.0.1-1.1.debian.tar.gz krb5-appl_1.0.1-1.1.dsc to main/k/krb5-appl/krb5-appl_1.0.1-1.1.dsc krb5-clients_1.0.1-1.1_amd64.deb to main/k/krb5-appl/krb5-clients_1.0.1-1.1_amd64.deb krb5-ftpd_1.0.1-1.1_amd64.deb to main/k/krb5-appl/krb5-ftpd_1.0.1-1.1_amd64.deb krb5-rsh-server_1.0.1-1.1_amd64.deb to main/k/krb5-appl/krb5-rsh-server_1.0.1-1.1_amd64.deb krb5-telnetd_1.0.1-1.1_amd64.deb to main/k/krb5-appl/krb5-telnetd_1.0.1-1.1_amd64.deb