-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 3.0 (quilt) Source: krb5 Binary: krb5-user, krb5-kdc, krb5-kdc-ldap, krb5-admin-server, krb5-multidev, libkrb5-dev, libkrb5-dbg, krb5-pkinit, krb5-otp, krb5-doc, libkrb5-3, libgssapi-krb5-2, libgssrpc4, libkadm5srv-mit9, libkadm5clnt-mit9, libk5crypto3, libkdb5-7, libkrb5support0, libkrad0, krb5-gss-samples, krb5-locales, libkrad-dev Architecture: any all Version: 1.12.1+dfsg-17 Maintainer: Sam Hartman <[email protected]> Uploaders: Russ Allbery <[email protected]>, Benjamin Kaduk <[email protected]> Homepage: http://web.mit.edu/kerberos/ Standards-Version: 3.9.5 Vcs-Browser: http://git.debian.org/?p=pkg-k5-afs/debian-krb5-2013.git Vcs-Git: git://git.debian.org/git/pkg-k5-afs/debian-krb5-2013.git Build-Depends: debhelper (>= 8.1.3), byacc | bison, comerr-dev, docbook-to-man, doxygen, libkeyutils-dev [linux-any], libldap2-dev, libncurses5-dev, libssl-dev, ss-dev, libverto-dev (>= 0.2.4), pkg-config, dh-systemd Build-Depends-Indep: python-cheetah, python-lxml, python-sphinx, doxygen-latex Package-List: krb5-admin-server deb net optional arch=any krb5-doc deb doc optional arch=all krb5-gss-samples deb net extra arch=any krb5-kdc deb net optional arch=any krb5-kdc-ldap deb net extra arch=any krb5-locales deb localization standard arch=all krb5-multidev deb libdevel optional arch=any krb5-otp deb net extra arch=any krb5-pkinit deb net extra arch=any krb5-user deb net optional arch=any libgssapi-krb5-2 deb libs standard arch=any libgssrpc4 deb libs standard arch=any libk5crypto3 deb libs standard arch=any libkadm5clnt-mit9 deb libs standard arch=any libkadm5srv-mit9 deb libs standard arch=any libkdb5-7 deb libs standard arch=any libkrad-dev deb libdevel extra arch=any libkrad0 deb libs standard arch=any libkrb5-3 deb libs standard arch=any libkrb5-dbg deb debug extra arch=any libkrb5-dev deb libdevel extra arch=any libkrb5support0 deb libs standard arch=any Checksums-Sha1: d211e7d605bd992d33b7cbca1da14d68f0770258 11792370 krb5_1.12.1+dfsg.orig.tar.gz bf4f5a0f4c829929ef7ad94fad8c0dd392be9471 111440 krb5_1.12.1+dfsg-17.debian.tar.xz Checksums-Sha256: eb29959f1e9f8d71e7401f5809daefae067296eb5b0da1176366280a16bdd784 11792370 krb5_1.12.1+dfsg.orig.tar.gz 05f2345d7279cf3e16a303758166323ac610437489a569ca927732ed9c647c7c 111440 krb5_1.12.1+dfsg-17.debian.tar.xz Files: dd0367010b3d2385d9f23db25457a0bf 11792370 krb5_1.12.1+dfsg.orig.tar.gz b80f4f573e808a22150b12c82c3d5e60 111440 krb5_1.12.1+dfsg-17.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQGIBAEBCAAGBQJU0RzvAAoJEHyaUfYmslafJjILXjUCpneAF8gfY4sbAXSUmST7 508K1i2PuHdLy+Wa3nhzXgEh9DbABiPqKfq8Jz8gtgW+MYgOykoENX57Kgcy1pf0 9TsuTkXesfepdj3Ok8DIKRcC0Gb6WkORjeojrcJRxNrNis1PV81kUuyjkxDz4ji+ u9MswBjt6lrIMEiNB1qNbNsoKFQ3P3Kp07dRORJiXH/vtEcVubVdimq8KlfIDgbS dc7yJhbeFXfhzGLFmZ6Q6npif2XniyevqqRUfxb6L6BPGGvLs0uaQwyMnbkJOWTf Z3+KmLWiaPre5W8PCnSxDQ76bKqXHE1QZ1E7AFlcOWVXejB8NHTMwf68lFGTSp56 HU1kMMKkugkI2CL1EIU+gA5wNVUJ8AhhhoDPFQqbmNOQI3MqM2eiqbbHYk6/A5Ta 4WIh/VUgQDE/ZhtU+yeXgrpL1ORS3JWVBkfcyrrzLb0QxTOwooZGTvc7I9VExKEV raOHLbZrDFX51BU= =cXI4 -----END PGP SIGNATURE----- Changes: krb5 (1.12.1+dfsg-17) unstable; urgency=high * MITKRB5-SA-2015-001 - CVE-2014-5352: gss_process_context_token() incorrectly frees context - CVE-2014-9421: kadmind doubly frees partial deserialization results - CVE-2014-9422: kadmind incorrectly validates server principal name - CVE-2014-9423: libgssrpc server applications leak uninitialized bytes -- Sam Hartman <[email protected]> Tue, 03 Feb 2015 10:29:35 -0500