heimdal - Debian Package Tracker

general

source: heimdal (main)
version: 7.7.0+dfsg-2
maintainer: Brian May (DMD)
uploaders: Dominik George [DMD]
arch: all any
std-ver: 4.1.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 7.1.0+dfsg-13+deb9u3
o-o-sec: 7.1.0+dfsg-13+deb9u3
oldstable: 7.5.0+dfsg-3
stable: 7.7.0+dfsg-2
testing: 7.7.0+dfsg-2
unstable: 7.7.0+dfsg-2

versioned links

7.1.0+dfsg-13+deb9u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7.5.0+dfsg-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7.7.0+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

heimdal-clients (7 bugs: 0, 7, 0, 0)
heimdal-dev
heimdal-docs
heimdal-kcm (1 bugs: 0, 1, 0, 0)
heimdal-kdc (8 bugs: 0, 6, 2, 0)
heimdal-multidev (3 bugs: 0, 2, 1, 0)
heimdal-servers
libasn1-8-heimdal
libgssapi3-heimdal
libhcrypto4-heimdal
libhdb9-heimdal (1 bugs: 0, 1, 0, 0)
libheimbase1-heimdal
libheimntlm0-heimdal
libhx509-5-heimdal
libkadm5clnt7-heimdal
libkadm5srv8-heimdal
libkafs0-heimdal
libkdc2-heimdal
libkrb5-26-heimdal (1 bugs: 0, 1, 0, 0)
libotp0-heimdal
libroken18-heimdal
libsl0-heimdal
libwind0-heimdal

action needed

lintian reports 17 warnings high

Lintian reports 17 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-08-22 Last update: 2021-10-23 20:01

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2021-3671: A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.

Created: 2021-10-12 Last update: 2021-10-15 21:34

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2021-3671: A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.

Created: 2021-10-12 Last update: 2021-10-15 21:34

Depends on packages which need a new maintainer normal

The packages that heimdal depends on which need a new maintainer are:

hesiod (#994654)
- Build-Depends: libhesiod-dev

Created: 2021-09-19 Last update: 2021-10-28 11:36

4 bugs tagged patch in the BTS normal

The BTS contains patches fixing 4 bugs, consider including or untagging them.

Created: 2021-08-14 Last update: 2021-10-28 11:31

Multiarch hinter reports 2 issue(s) normal

There are issues with the multiarch metadata for this package.

heimdal-docs could be marked Multi-Arch: foreign
heimdal-dev could be marked Multi-Arch: same

Created: 2016-09-14 Last update: 2021-10-28 09:30

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2021-09-18 Last update: 2021-10-28 09:00

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 7.7.0+dfsg-3, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 203472611955079c57878f4f2a9ed620465c5fc2
Author: Brian May <bam@debian.org>
Date:   Thu Oct 21 10:10:56 2021 +1100

    Fix CVE-2021-3671

commit 4f939c1ec07851fe4f80c14fc02d1a91ab3d433d
Merge: c464e20e 38892b7a
Author: Brian May <bam@debian.org>
Date:   Thu Nov 26 20:47:47 2020 +0000

    Merge branch 'multiarch-fixes' into 'master'
    
    Apply hints suggested by the multi-arch hinter
    
    See merge request debian/heimdal!2

commit 38892b7abe98896d807e56131655aa58c8081ec9
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Tue Jun 9 00:52:05 2020 +0000

    Apply multi-arch hints.
    + heimdal-docs: Add Multi-Arch: foreign.
    + heimdal-dev: Add Multi-Arch: same.

Created: 2020-11-26 Last update: 2021-10-21 00:40

RFH: The maintainer is looking for help with this package. normal

The current maintainer is looking for someone who can help with the maintenance of this package. If you are interested in this package, please consider helping out. One way you can help is offer to be a co-maintainer or triage bugs in the BTS. Please see bug number #849325 for more information.

Created: 2017-12-02 Last update: 2017-12-02 00:26

2 low-priority security issues in buster low

There are 2 open security issues in buster.

2 issues left for the package maintainer to handle:

CVE-2021-3671: (needs triaging) A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.
CVE-2019-14870: (needs triaging) All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the S4U (MS-SFU) Kerberos delegation model includes a feature allowing for a subset of clients to be opted out of constrained delegation in any way, either S4U2Self or regular Kerberos authentication, by forcing all tickets for these clients to be non-forwardable. In AD this is implemented by a user attribute delegation_not_allowed (aka not-delegated), which translates to disallow-forwardable. However the Samba AD DC does not do that for S4U2Self and does set the forwardable flag even if the impersonated client has the not-delegated flag set.

You can find information about how to handle these issues in the security team's documentation.

Created: 2021-02-19 Last update: 2021-10-15 21:34

1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:

CVE-2021-3671: (needs triaging) A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-10-12 Last update: 2021-10-15 21:34

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2014-07-02 Last update: 2020-01-14 21:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.0 instead of 4.1.2).

Created: 2018-04-16 Last update: 2021-08-18 14:03

testing migrations

This package will soon be part of the auto-openldap transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2020-05-17] heimdal 7.7.0+dfsg-2 MIGRATED to testing (Debian testing watch)
[2020-05-12] Accepted heimdal 7.7.0+dfsg-2 (source) into unstable (Brian May)
[2020-01-05] heimdal 7.7.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2019-12-22] Accepted heimdal 7.7.0+dfsg-1 (source) into unstable (Brian May)
[2019-06-07] Accepted heimdal 7.1.0+dfsg-13+deb9u3 (source i386 all) into proposed-updates->stable-new, proposed-updates (Brian May)
[2019-06-03] Accepted heimdal 7.1.0+dfsg-13+deb9u3 (source i386 all) into stable->embargoed, stable (Brian May)
[2019-05-29] heimdal 7.5.0+dfsg-3 MIGRATED to testing (Debian testing watch)
[2019-05-27] Accepted heimdal 7.5.0+dfsg-3 (source) into unstable (Brian May)
[2018-11-18] heimdal 7.5.0+dfsg-2.1 MIGRATED to testing (Debian testing watch)
[2018-11-12] Accepted heimdal 7.5.0+dfsg-2.1 (source) into unstable (Hilko Bengen)
[2018-06-07] heimdal 7.5.0+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-06-02] Accepted heimdal 7.5.0+dfsg-2 (source i386 all) into unstable (Brian May)
[2017-12-17] heimdal 7.5.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2017-12-15] Accepted heimdal 7.5.0+dfsg-1 (source amd64 all) into unstable (Dominik George)
[2017-12-09] Accepted heimdal 7.1.0+dfsg-13+deb9u2 (source i386 all) into proposed-updates->stable-new, proposed-updates (Dominik George) (signed by: Thorsten Glaser)
[2017-07-28] heimdal 7.4.0.dfsg.1-2 MIGRATED to testing (Debian testing watch)
[2017-07-23] Accepted heimdal 7.4.0.dfsg.1-2 (source i386 all) into unstable (Brian May)
[2017-07-17] heimdal 7.4.0.dfsg.1-1 MIGRATED to testing (Debian testing watch)
[2017-07-16] Accepted heimdal 1.6~rc2+dfsg-9+deb8u1 (all source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Salvatore Bonaccorso)
[2017-07-16] Accepted heimdal 7.1.0+dfsg-13+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2017-07-15] Accepted heimdal 7.4.0.dfsg.1-1 (source i386 all) into unstable (Brian May)
[2017-07-14] Accepted heimdal 1.6~git20120403+dfsg1-2+deb7u1 (source all amd64) into oldoldstable (Guido Günther)
[2017-05-01] heimdal 7.1.0+dfsg-13 MIGRATED to testing (Debian testing watch)
[2017-04-26] Accepted heimdal 7.1.0+dfsg-13 (source amd64 all) into unstable (Brian May)
[2017-04-16] heimdal 7.1.0+dfsg-12 MIGRATED to testing (Debian testing watch)
[2017-04-14] Accepted heimdal 7.1.0+dfsg-12 (source i386 all) into unstable (Brian May)
[2017-04-10] heimdal 7.1.0+dfsg-11 MIGRATED to testing (Debian testing watch)
[2017-04-08] Accepted heimdal 7.1.0+dfsg-11 (source i386 all) into unstable (Brian May)
[2017-04-08] Accepted heimdal 7.1.0+dfsg-10 (source i386 all) into unstable (Brian May)
[2017-01-20] heimdal 7.1.0+dfsg-9 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 31
RC: 2
I&N: 23
M&W: 6
F&P: 0
patch: 4

links

homepage
lintian (0, 17)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
l10n (100, 6)

ubuntu

[Information about Ubuntu for Debian Developers]

version: 7.7.0+dfsg-2ubuntu2
12 bugs
patches for 7.7.0+dfsg-2ubuntu2