-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Sun, 03 Jan 2010 15:49:58 -0500 Source: krb5 Binary: krb5-doc libkrb5-dev krb5-rsh-server krb5-user krb5-ftpd libkadm55 libkrb53 krb5-clients krb5-telnetd krb5-kdc krb5-admin-server libkrb5-dbg Architecture: source i386 all Version: 1.4.4-7etch8 Distribution: oldstable-security Urgency: high Maintainer: Sam Hartman <hartmans@debian.org> Changed-By: Sam Hartman <hartmans@debian.org> Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.4.4-7etch8) oldstable-security; urgency=high . * cve-2009-4212, MIT-KRB5-SA-2009-004: Integer underflows in AES and RC4 decriptions. This can definitely lead to a DOS attack and potentially may leae to execution of unexpected code. It's potentially possible that arbitrary code could be executed, although much more likely that permuted heap contents or buffers not under attacker control will be executed. Files: 4ee0daa9f7a62bb59b665585dfc699d9 884 net standard krb5_1.4.4-7etch8.dsc 546997d33ae6e7a7d8daa7cec8eeed3f 1590501 net standard krb5_1.4.4-7etch8.diff.gz 4bdcd4ef469018cadaf6acf6782b2c0c 1806668 doc optional krb5-doc_1.4.4-7etch8_all.deb 7ca10e3a2179c518d2aed4a4612c6119 174430 libs optional libkadm55_1.4.4-7etch8_i386.deb f72eb38bd49c68c5a89f909844020534 408762 libs standard libkrb53_1.4.4-7etch8_i386.deb 7e39b6602069aae509d227999d5d403c 124540 net optional krb5-user_1.4.4-7etch8_i386.deb bab9430ce99981adda474d644bae0764 196872 net optional krb5-clients_1.4.4-7etch8_i386.deb c1699246a7ad5eaca9c2f5ee5fcb337a 80642 net optional krb5-rsh-server_1.4.4-7etch8_i386.deb 571974ef325e11e5773a8e69e3439923 58378 net extra krb5-ftpd_1.4.4-7etch8_i386.deb 3adbcad94f5627c2c4cf1b1850d05c6a 62780 net extra krb5-telnetd_1.4.4-7etch8_i386.deb 6e33380795b2d945c01ef7183e458f23 133706 net optional krb5-kdc_1.4.4-7etch8_i386.deb e9cdd1646f5f3d1e3756958d70171c84 78928 net optional krb5-admin-server_1.4.4-7etch8_i386.deb cc980957f4c660dfe1b73e175c807931 680610 libdevel extra libkrb5-dev_1.4.4-7etch8_i386.deb a38ca0f4f6d1b6d3fb4e5e37bb241614 1038380 libdevel extra libkrb5-dbg_1.4.4-7etch8_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAktDyiQACgkQ/I12czyGJg+BGACbBjuMyA3AKGvN6q6d83fEBDE1 YdUAn17v4dM+7PuJU4zq2c9CxxBpijq7 =wIIl -----END PGP SIGNATURE----- Accepted: krb5-admin-server_1.4.4-7etch8_i386.deb to main/k/krb5/krb5-admin-server_1.4.4-7etch8_i386.deb krb5-clients_1.4.4-7etch8_i386.deb to main/k/krb5/krb5-clients_1.4.4-7etch8_i386.deb krb5-doc_1.4.4-7etch8_all.deb to main/k/krb5/krb5-doc_1.4.4-7etch8_all.deb krb5-ftpd_1.4.4-7etch8_i386.deb to main/k/krb5/krb5-ftpd_1.4.4-7etch8_i386.deb krb5-kdc_1.4.4-7etch8_i386.deb to main/k/krb5/krb5-kdc_1.4.4-7etch8_i386.deb krb5-rsh-server_1.4.4-7etch8_i386.deb to main/k/krb5/krb5-rsh-server_1.4.4-7etch8_i386.deb krb5-telnetd_1.4.4-7etch8_i386.deb to main/k/krb5/krb5-telnetd_1.4.4-7etch8_i386.deb krb5-user_1.4.4-7etch8_i386.deb to main/k/krb5/krb5-user_1.4.4-7etch8_i386.deb krb5_1.4.4-7etch8.diff.gz to main/k/krb5/krb5_1.4.4-7etch8.diff.gz krb5_1.4.4-7etch8.dsc to main/k/krb5/krb5_1.4.4-7etch8.dsc libkadm55_1.4.4-7etch8_i386.deb to main/k/krb5/libkadm55_1.4.4-7etch8_i386.deb libkrb5-dbg_1.4.4-7etch8_i386.deb to main/k/krb5/libkrb5-dbg_1.4.4-7etch8_i386.deb libkrb5-dev_1.4.4-7etch8_i386.deb to main/k/krb5/libkrb5-dev_1.4.4-7etch8_i386.deb libkrb53_1.4.4-7etch8_i386.deb to main/k/krb5/libkrb53_1.4.4-7etch8_i386.deb