-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 08 Aug 2014 12:12:09 -0400 Source: krb5 Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc libkrb5-3 libgssapi-krb5-2 libgssrpc4 libkadm5srv-mit8 libkadm5clnt-mit8 libk5crypto3 libkdb5-6 libkrb5support0 krb5-gss-samples krb5-locales Architecture: source all amd64 Version: 1.10.1+dfsg-5+deb7u2 Distribution: wheezy-security Urgency: high Maintainer: Sam Hartman <hartmans@debian.org> Changed-By: Benjamin Kaduk <kaduk@mit.edu> Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-doc - Documentation for MIT Kerberos krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-locales - Internationalization support for MIT Kerberos krb5-multidev - Development files for MIT Kerberos without Heimdal conflict krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit8 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit8 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-6 - MIT Kerberos runtime libraries - Kerberos database libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Closes: 753624 753625 755520 755521 757416 Changes: krb5 (1.10.1+dfsg-5+deb7u2) stable-security; urgency=high . * Apply upstream patches for several issues: - CVE-2014-4341: denial of service due to improper GSSAPI message validation, Closes: #753624 - CVE-2014-4342: denial of service due to improper GSSAPI message validation, Closes: #753625 - CVE-2014-4343: double-free in SPNEGO initiator during renegotiation, Closes: #755520 - CVE-2014-4344: NULL dereference in SPNEGO acceptor, Closes: #755521 - CVE-2014-4345 [MITKRB5-SA-2014-001]: buffer overrun in kadmind with LDAP backend, Closes: #757416 Checksums-Sha1: f527ead4f657368dac61fd1d85c9d3cdb58af549 2298 krb5_1.10.1+dfsg-5+deb7u2.dsc 9a793ea3e2f67c0206a41bb376d90cc4209835c9 138587 krb5_1.10.1+dfsg-5+deb7u2.debian.tar.gz 5ca44472ca56debafd4106a4347e3a76bc229e14 2668294 krb5-doc_1.10.1+dfsg-5+deb7u2_all.deb 8b9e8c883260dee1854f04ec98a9af0e1478a002 1503172 krb5-locales_1.10.1+dfsg-5+deb7u2_all.deb 2f968a1382b3a884f96a3ef981e1d279f640513a 153952 krb5-user_1.10.1+dfsg-5+deb7u2_amd64.deb 55aa9eaab5865249fc5df82271f0da94a766ba60 225120 krb5-kdc_1.10.1+dfsg-5+deb7u2_amd64.deb 9888be6c8dfc96656390113f40e382fa6440d53c 120928 krb5-kdc-ldap_1.10.1+dfsg-5+deb7u2_amd64.deb ded386cc280c2ed3e2e07aa5fc6b0f45f9a375fe 123136 krb5-admin-server_1.10.1+dfsg-5+deb7u2_amd64.deb 56c8c197fd2511ba7c72b20d66a78087351dc24d 153496 krb5-multidev_1.10.1+dfsg-5+deb7u2_amd64.deb d5a5889a22aafb7c963d623f9f6df78d6d0b261a 39748 libkrb5-dev_1.10.1+dfsg-5+deb7u2_amd64.deb b03720d0aca68b463864279fdddc2651413585e2 2203416 libkrb5-dbg_1.10.1+dfsg-5+deb7u2_amd64.deb 6a7aaa11ed8ff495d0c781c12848758f14cb9708 82468 krb5-pkinit_1.10.1+dfsg-5+deb7u2_amd64.deb 2fb8ba75fecaa9813bf664cbdbca4c7cd4ddd6a9 393316 libkrb5-3_1.10.1+dfsg-5+deb7u2_amd64.deb 6b66b1e114de0739f7e3acc850689686bcf4b458 148158 libgssapi-krb5-2_1.10.1+dfsg-5+deb7u2_amd64.deb de9d88b12738f2f2dc3e4a4c8ba5551cb85722b9 87652 libgssrpc4_1.10.1+dfsg-5+deb7u2_amd64.deb 81ebe1838ca19bfdbc87f7806db7fa45b174bc46 84924 libkadm5srv-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb a852e5c56a304b9c4fb1e7e4445e5030b5a1f11d 68024 libkadm5clnt-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb e7dd9ab17cf00b46e80054925b7a66659b8457d4 112664 libk5crypto3_1.10.1+dfsg-5+deb7u2_amd64.deb e68514bf88b3407131bd483cb88e1b5e15b104ec 67064 libkdb5-6_1.10.1+dfsg-5+deb7u2_amd64.deb cf8d7923a5b9f106ac96368605975f0232203f3c 49824 libkrb5support0_1.10.1+dfsg-5+deb7u2_amd64.deb c45d2981625c208b860d33e5c5d4e97368b92751 51836 krb5-gss-samples_1.10.1+dfsg-5+deb7u2_amd64.deb Checksums-Sha256: 9a5ea7c5a229cb81d4b7a0da9dfa1c8b827bac1211fe87be2597133b17e5e984 2298 krb5_1.10.1+dfsg-5+deb7u2.dsc 4dfa2a5eeafc5682d7e646b8042cc6928f64299904d1ef2b3627cc1744367102 138587 krb5_1.10.1+dfsg-5+deb7u2.debian.tar.gz 6f4decaaa0962548810e50eb0667132b809869b26dc18580d88027786d7c021c 2668294 krb5-doc_1.10.1+dfsg-5+deb7u2_all.deb 678639a04d89a1bf8734bcf60a4adfa65a8bbf1bf1cafc092b235100edd89f82 1503172 krb5-locales_1.10.1+dfsg-5+deb7u2_all.deb 47a1fc3a52f3201c59b37d5bd5faa7a2f99ff138b8ba923d729ac2eaecf94331 153952 krb5-user_1.10.1+dfsg-5+deb7u2_amd64.deb 33224b5a35d55d6e19d7507728cf953b80d0f76c086c038593bdf065c641c63a 225120 krb5-kdc_1.10.1+dfsg-5+deb7u2_amd64.deb ecdb6de9af054c9c7d660e030c912bd5782ad82664ce2bd6e294f82e0f227845 120928 krb5-kdc-ldap_1.10.1+dfsg-5+deb7u2_amd64.deb 0914cbd16d5eb72672d138b18c7472ea10232b4133ad352df54f1389d5e3e24c 123136 krb5-admin-server_1.10.1+dfsg-5+deb7u2_amd64.deb 354ec830b64b33f750ce21b10ec84238d62847a4601b5392cab0da95b76d8d5d 153496 krb5-multidev_1.10.1+dfsg-5+deb7u2_amd64.deb f096ae73a38474efed662f8871a3bad5edb3d412e59fa413e9bec6c790b0d99a 39748 libkrb5-dev_1.10.1+dfsg-5+deb7u2_amd64.deb 4f5ce77e3ae8d228d440274279223618900084248a3ff436e78aaaeb6032ec40 2203416 libkrb5-dbg_1.10.1+dfsg-5+deb7u2_amd64.deb 34314fc5f38c8d36a4f777d1d2c9d88d07df7628b1887b0005caa4252db5b13c 82468 krb5-pkinit_1.10.1+dfsg-5+deb7u2_amd64.deb d9e8b366d824c9ea3bfa36a6085d769ed28c2475a5a4ba0f84db8f4c376ac552 393316 libkrb5-3_1.10.1+dfsg-5+deb7u2_amd64.deb d1921edda9418569528f85f87f1474549a6f1506729c5d46918036fefc5122d0 148158 libgssapi-krb5-2_1.10.1+dfsg-5+deb7u2_amd64.deb 43462f2e39e599022ef66ee16c48ef647d414b61ba26533e05b5360a0e024633 87652 libgssrpc4_1.10.1+dfsg-5+deb7u2_amd64.deb 4cac7e9d7d4ed2e3ade19c5f5137f3c55f0d369ff52409e615d85411b3aa1d12 84924 libkadm5srv-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb 6ce7b66c69a2403e2f36498e926a785f8bcbe67876c4e128eeed1877a1f2bd12 68024 libkadm5clnt-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb 9b8baca18afb7d97d6de7fc577530c3efaa45901979b16bd862341b18a46e9c6 112664 libk5crypto3_1.10.1+dfsg-5+deb7u2_amd64.deb 4e144383383bbf25b1ac311a273c096ff1a47e61f530f13c5dff06f712521ef3 67064 libkdb5-6_1.10.1+dfsg-5+deb7u2_amd64.deb 98e167707e7b420a5fba63c0c368d849efe32895c5f5acc8a3056def50e878ea 49824 libkrb5support0_1.10.1+dfsg-5+deb7u2_amd64.deb 7ca8df14fa4ed2bc34025932b120da2cfd6a289609663818ff0838a77f2aedcf 51836 krb5-gss-samples_1.10.1+dfsg-5+deb7u2_amd64.deb Files: 46e987369fe06081bf64b0b18014a5b1 2298 net standard krb5_1.10.1+dfsg-5+deb7u2.dsc a1759568c95f81a9937ff20cabcdd268 138587 net standard krb5_1.10.1+dfsg-5+deb7u2.debian.tar.gz 52cd90525d8a542cca6b78e0455aa3cb 2668294 doc optional krb5-doc_1.10.1+dfsg-5+deb7u2_all.deb d885872c317280b4195c9d3e2b87c0fc 1503172 localization standard krb5-locales_1.10.1+dfsg-5+deb7u2_all.deb b52b0a2fe2fd2a7507fa59db5b12d8a1 153952 net optional krb5-user_1.10.1+dfsg-5+deb7u2_amd64.deb 2bcfadfe1ed007f396577f12ebe8f0b8 225120 net optional krb5-kdc_1.10.1+dfsg-5+deb7u2_amd64.deb 218ac08f738bc6a3f800d77d6b2aeda4 120928 net extra krb5-kdc-ldap_1.10.1+dfsg-5+deb7u2_amd64.deb 782e680ab21f040a4b341184b5b9ebf7 123136 net optional krb5-admin-server_1.10.1+dfsg-5+deb7u2_amd64.deb 98b229beff22debe70d1deb61f965f23 153496 libdevel optional krb5-multidev_1.10.1+dfsg-5+deb7u2_amd64.deb 42bb475b1466c14eef228bf2bf6066f3 39748 libdevel extra libkrb5-dev_1.10.1+dfsg-5+deb7u2_amd64.deb f390d9209d95149a215814e27609e5b2 2203416 debug extra libkrb5-dbg_1.10.1+dfsg-5+deb7u2_amd64.deb 713f0168228d3a11814cd1dadaaf4963 82468 net extra krb5-pkinit_1.10.1+dfsg-5+deb7u2_amd64.deb 0892bc9cddc04a7ffb3c4d7d51a7d9bd 393316 libs standard libkrb5-3_1.10.1+dfsg-5+deb7u2_amd64.deb d2fac49a229ff29e0242f536b092c332 148158 libs standard libgssapi-krb5-2_1.10.1+dfsg-5+deb7u2_amd64.deb 00986807a15ac2564cf9203b69fc1874 87652 libs standard libgssrpc4_1.10.1+dfsg-5+deb7u2_amd64.deb 1add33fb34e8a939aab9d949a8c6f0f1 84924 libs standard libkadm5srv-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb 9b6fc1d8519c5b2bccc64a173e8d169f 68024 libs standard libkadm5clnt-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb 52f684e84a9bfd7f3aa061fbb88c1fd0 112664 libs standard libk5crypto3_1.10.1+dfsg-5+deb7u2_amd64.deb 1226b6146886e1fe8439b437f1fe8f05 67064 libs standard libkdb5-6_1.10.1+dfsg-5+deb7u2_amd64.deb b993adffe62bda77734edef9c7b8202e 49824 libs standard libkrb5support0_1.10.1+dfsg-5+deb7u2_amd64.deb 8894dccce50e13e570ec0de222c6dbfb 51836 net extra krb5-gss-samples_1.10.1+dfsg-5+deb7u2_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEARECAAYFAlPlK78ACgkQ/I12czyGJg9FswCgp98E+3bbluhqOzH7fR6wdQji JEgAn029K+w5t4nSFFKSky1oBdcEXaAV =g/Hv -----END PGP SIGNATURE-----