CVE-2022-41916:
Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Versions prior to 7.7.1 are vulnerable to a denial of service vulnerability in Heimdal's PKI certificate validation library, affecting the KDC (via PKINIT) and kinit (via PKINIT), as well as any third-party applications using Heimdal's libhx509. Users should upgrade to Heimdal 7.7.1 or 7.8. There are no known workarounds for this issue.
The current maintainer is looking for someone who can help with
the maintenance of this package. If you are interested in this
package, please consider helping out. One way you can help is
offer to be a co-maintainer or triage bugs in the BTS. Please see bug number #849325 for more information.
Standards version of the package is outdated.
wishlist
The package should be updated to follow the last version of Debian Policy
(Standards-Version 4.6.1 instead of
4.1.2).
testing migrations
This package is part of the ongoing testing transition known as auto-heimdal.
Please avoid uploads unrelated to this transition, they would
likely delay it and require supplementary work from the release
managers. On the other hand, if your package has problems
preventing it to migrate to testing, please fix them
as soon as possible.
You can probably find supplementary information in the
debian-release
archives or in the corresponding
release.debian.org
bug.
This package will soon be part of the auto-openldap transition. You might want to ensure that your package is ready for it.
You can probably find supplementary information in the
debian-release
archives or in the corresponding
release.debian.org
bug.
Migration status for heimdal (7.7.0+dfsg-6 to 7.8.git20221115.a6cf945+dfsg-3): Waiting for test results or another package, or too young (no action required now - check later)
Issues preventing migration:
∙ ∙ Too young, only 1 of 5 days old
Additional info:
∙ ∙ Updating heimdal will fix bugs in testing: #1024187
![[bug history graph]](https://qa.debian.org/data/bts/graphs/h/heimdal.png){kind=link}