Debian Package Tracker

general

source: heimdal (main)
version: 7.5.0+dfsg-3
maintainer: Brian May (DMD)
uploaders: Dominik George [DMD]
arch: all any
std-ver: 4.1.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.6~rc2+dfsg-9+deb8u1
o-o-sec: 1.6~rc2+dfsg-9+deb8u1
oldstable: 7.1.0+dfsg-13+deb9u3
old-sec: 7.1.0+dfsg-13+deb9u3
stable: 7.5.0+dfsg-3
testing: 7.5.0+dfsg-3
unstable: 7.5.0+dfsg-3

versioned links

1.6~rc2+dfsg-9+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7.1.0+dfsg-13+deb9u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
7.5.0+dfsg-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

heimdal-clients (7 bugs: 0, 7, 0, 0)
heimdal-dev
heimdal-docs
heimdal-kcm (1 bugs: 0, 1, 0, 0)
heimdal-kdc (9 bugs: 0, 7, 2, 0)
heimdal-multidev (3 bugs: 0, 2, 1, 0)
heimdal-servers
libasn1-8-heimdal
libgssapi3-heimdal
libhcrypto4-heimdal
libhdb9-heimdal (1 bugs: 0, 1, 0, 0)
libheimbase1-heimdal
libheimntlm0-heimdal
libhx509-5-heimdal
libkadm5clnt7-heimdal
libkadm5srv8-heimdal
libkafs0-heimdal
libkdc2-heimdal
libkrb5-26-heimdal (1 bugs: 0, 1, 0, 0)
libotp0-heimdal
libroken18-heimdal
libsl0-heimdal
libwind0-heimdal

action needed

A new upstream version is available: 7.7.0 high

A new upstream version 7.7.0 is available, you should consider packaging it.

Created: 2019-05-16 Last update: 2019-10-22 08:45

3 bugs tagged patch in the BTS normal

The BTS contains patches fixing 3 bugs, consider including or untagging them.

Created: 2019-04-01 Last update: 2019-10-22 10:02

Multiarch hinter reports 2 issue(s) normal

There are issues with the multiarch metadata for this package.

heimdal-docs could be marked Multi-Arch: foreign
heimdal-dev could be marked Multi-Arch: same

Created: 2016-09-14 Last update: 2019-10-22 08:51

2 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 3556e4cda629102f647546bcdf1ef08a40b7bb7e
Author: Brian May <bam@debian.org>
Date:   Wed May 22 17:22:30 2019 +1000

    Update test certificates to pre 2038 expiry

commit addc43b11263e8f0f3db032cc3873dd2ca17a09e
Author: Brian May <bam@debian.org>
Date:   Tue May 21 18:41:16 2019 +1000

    Fix CVE-2018-16860 and CVE-2019-12098

Created: 2019-05-24 Last update: 2019-10-21 05:10

lintian reports 37 warnings normal

Lintian reports 37 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2019-08-24 Last update: 2019-08-24 02:15

RFH: The maintainer is looking for help with this package. normal

The current maintainer is looking for someone who can help with the maintenance of this package. If you are interested in this package, please consider helping out. One way you can help is offer to be a co-maintainer or triage bugs in the BTS. Please see bug number #849325 for more information.

Created: 2017-12-02 Last update: 2017-12-02 00:26

The URL(s) for this package had some recent persistent issues low

DUCK reports some issues concerning upstream URLs defined for this package.

Created: 2019-09-06 Last update: 2019-10-22 08:14

3 ignored security issues in jessie low

There are 3 open security issues in jessie.

3 issues skipped by the security teams:

CVE-2018-16860: A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and replace the user name (principal) in the request with any desired user name (principal) that exists in the KDC effectively obtaining a ticket for that principal.
CVE-2017-6594: The transit path validation code in Heimdal before 7.3 might allow attackers to bypass the capath policy protection mechanism by leveraging failure to add the previous hop realm to the transit path of issued tickets.
CVE-2019-12098: In the client side of Heimdal before 7.6.0, failure to verify anonymous PKINIT PA-PKINIT-KX key exchange permits a man-in-the-middle attack. This issue is in krb5_init_creds_step in lib/krb5/init_creds_pw.c.

Please fix them.

Created: 2017-04-10 Last update: 2019-10-21 00:30

Build log checks report 3 warnings low

Build log checks report 3 warnings

Created: 2014-07-02 Last update: 2019-05-27 12:03

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.1 instead of 4.1.2).

Created: 2018-04-16 Last update: 2019-09-29 23:39

news

[rss feed]

[2019-06-07] Accepted heimdal 7.1.0+dfsg-13+deb9u3 (source i386 all) into proposed-updates->stable-new, proposed-updates (Brian May)
[2019-06-03] Accepted heimdal 7.1.0+dfsg-13+deb9u3 (source i386 all) into stable->embargoed, stable (Brian May)
[2019-05-29] heimdal 7.5.0+dfsg-3 MIGRATED to testing (Debian testing watch)
[2019-05-27] Accepted heimdal 7.5.0+dfsg-3 (source) into unstable (Brian May)
[2018-11-18] heimdal 7.5.0+dfsg-2.1 MIGRATED to testing (Debian testing watch)
[2018-11-12] Accepted heimdal 7.5.0+dfsg-2.1 (source) into unstable (Hilko Bengen)
[2018-06-07] heimdal 7.5.0+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-06-02] Accepted heimdal 7.5.0+dfsg-2 (source i386 all) into unstable (Brian May)
[2017-12-17] heimdal 7.5.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2017-12-15] Accepted heimdal 7.5.0+dfsg-1 (source amd64 all) into unstable (Dominik George)
[2017-12-09] Accepted heimdal 7.1.0+dfsg-13+deb9u2 (source i386 all) into proposed-updates->stable-new, proposed-updates (Dominik George) (signed by: Thorsten Glaser)
[2017-07-28] heimdal 7.4.0.dfsg.1-2 MIGRATED to testing (Debian testing watch)
[2017-07-23] Accepted heimdal 7.4.0.dfsg.1-2 (source i386 all) into unstable (Brian May)
[2017-07-17] heimdal 7.4.0.dfsg.1-1 MIGRATED to testing (Debian testing watch)
[2017-07-16] Accepted heimdal 1.6~rc2+dfsg-9+deb8u1 (all source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Salvatore Bonaccorso)
[2017-07-16] Accepted heimdal 7.1.0+dfsg-13+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2017-07-15] Accepted heimdal 7.4.0.dfsg.1-1 (source i386 all) into unstable (Brian May)
[2017-07-14] Accepted heimdal 1.6~git20120403+dfsg1-2+deb7u1 (source all amd64) into oldoldstable (Guido Günther)
[2017-05-01] heimdal 7.1.0+dfsg-13 MIGRATED to testing (Debian testing watch)
[2017-04-26] Accepted heimdal 7.1.0+dfsg-13 (source amd64 all) into unstable (Brian May)
[2017-04-16] heimdal 7.1.0+dfsg-12 MIGRATED to testing (Debian testing watch)
[2017-04-14] Accepted heimdal 7.1.0+dfsg-12 (source i386 all) into unstable (Brian May)
[2017-04-10] heimdal 7.1.0+dfsg-11 MIGRATED to testing (Debian testing watch)
[2017-04-08] Accepted heimdal 7.1.0+dfsg-11 (source i386 all) into unstable (Brian May)
[2017-04-08] Accepted heimdal 7.1.0+dfsg-10 (source i386 all) into unstable (Brian May)
[2017-01-20] heimdal 7.1.0+dfsg-9 MIGRATED to testing (Debian testing watch)
[2017-01-09] Accepted heimdal 7.1.0+dfsg-9 (source amd64 all) into unstable (Jelmer Vernooĳ)
[2017-01-08] Accepted heimdal 7.1.0+dfsg-8 (source amd64 all) into experimental (Jelmer Vernooĳ)
[2017-01-08] Accepted heimdal 7.1.0+dfsg-7 (source amd64 all) into unstable (Jelmer Vernooĳ)
[2017-01-08] Accepted heimdal 7.1.0+dfsg-6 (source amd64 all) into unstable (Jelmer Vernooĳ)

bugs [bug history graph]

all: 31
RC: 1
I&N: 24
M&W: 6
F&P: 0
patch: 3

links

homepage
lintian (0, 37)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 7.5.0+dfsg-3build1
11 bugs