-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 3.0 (quilt) Source: krb5 Binary: krb5-user, krb5-kdc, krb5-kdc-ldap, krb5-admin-server, krb5-multidev, libkrb5-dev, libkrb5-dbg, krb5-pkinit, krb5-doc, libkrb5-3, libgssapi-krb5-2, libgssrpc4, libkadm5srv-mit8, libkadm5clnt-mit8, libk5crypto3, libkdb5-6, libkrb5support0, krb5-gss-samples, krb5-locales Architecture: any all Version: 1.10.1+dfsg-5+deb7u3 Maintainer: Sam Hartman <[email protected]> Uploaders: Russ Allbery <[email protected]> Homepage: http://web.mit.edu/kerberos/ Standards-Version: 3.9.1 Vcs-Browser: http://git.debian.org/?p=pkg-k5-afs/debian-krb5.git Vcs-Git: git://git.debian.org/git/pkg-k5-afs/debian-krb5.git Build-Depends: debhelper (>= 8.1.3), byacc | bison, comerr-dev, docbook-to-man, libkeyutils-dev [linux-any], libldap2-dev, libncurses5-dev, libssl-dev, ss-dev, libverto-dev, pkg-config, texinfo Build-Depends-Indep: texinfo Package-List: krb5-admin-server deb net optional krb5-doc deb doc optional krb5-gss-samples deb net extra krb5-kdc deb net optional krb5-kdc-ldap deb net extra krb5-locales deb localization standard krb5-multidev deb libdevel optional krb5-pkinit deb net extra krb5-user deb net optional libgssapi-krb5-2 deb libs standard libgssrpc4 deb libs standard libk5crypto3 deb libs standard libkadm5clnt-mit8 deb libs standard libkadm5srv-mit8 deb libs standard libkdb5-6 deb libs standard libkrb5-3 deb libs standard libkrb5-dbg deb debug extra libkrb5-dev deb libdevel extra libkrb5support0 deb libs standard Checksums-Sha1: dd4efcb604aec3f7faca0cb97e9dbd1f456c710e 10638231 krb5_1.10.1+dfsg.orig.tar.gz 866c85c060051ed491f3175ef8588d200abfe894 142116 krb5_1.10.1+dfsg-5+deb7u3.debian.tar.gz Checksums-Sha256: f0b63fb8ffd0ae0bf3276da37fc55857079c75dccf78b31d628a0aeccfa8b183 10638231 krb5_1.10.1+dfsg.orig.tar.gz 82fa195a4d391031ffce71f25500c68298d5f19cfaded517f3416775104ffd75 142116 krb5_1.10.1+dfsg-5+deb7u3.debian.tar.gz Files: 3da41835dd4df7d4f3583f82cdbf1a84 10638231 krb5_1.10.1+dfsg.orig.tar.gz 2979199611b5ab09a2195170a7e84c4d 142116 krb5_1.10.1+dfsg-5+deb7u3.debian.tar.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQGIBAEBCAAGBQJU0QmeAAoJEHyaUfYmslaf1iULYKgdAbbKDV39wN81JazJYZ61 qXTao6Kv6XqwqAdmzebysUh92Svq6htlyqCBQQ40eBFUzoDHbdXdhoqGFsc5P/KZ yROt8Z1qMKFb9eipHM9wfyNaKGq9gxUec+axqkk07FZV+AuLa9PIRnj4mQoDh50g 6loFg3fDCqBOtLoUV4OPCX7IIPKRqb690D1GUsJc/uHnMns8sdg6meQRJUjQTCCq TSQ04d8pQXWIAVCm/de5ht8wkZot8uvOtfay+RIXBgIYI910oguEgHNpHfiWfhn/ 1TLFWd40IpVMf3VLtHw0aecwv/BvPBLDoJXfKU2gjUxuwupye19COQl6a6yLIV+F tJNKqvyvHUN/7l6+QaO64yEkEOJMhSJX93IRfJSimLo1w6E1jl3E6h1DAw9Mn5w6 TQ5eWvrG455kfWwFn7hCe/bs5GqFJzsoj2bok86IqvlfJRDfN89dSDK3pXBBN7Vt aN4VkYCZdLc/ttY= =imtB -----END PGP SIGNATURE----- Changes: krb5 (1.10.1+dfsg-5+deb7u3) stable-security; urgency=high * MITKRB5-SA-2015-001 - CVE-2014-5352: gss_process_context_token() incorrectly frees context - CVE-2014-9421: kadmind doubly frees partial deserialization results - CVE-2014-9422: kadmind incorrectly validates server principal name - CVE-2014-9423: libgssrpc server applications leak uninitialized bytes -- Sam Hartman <[email protected]> Tue, 03 Feb 2015 10:50:31 -0500