Ubuntu
heimdal package

Merge heimdal from Debian unstable for 22.04

Bug #1946860 reported by Bryce Harrington
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
heimdal (Ubuntu)
Fix Released
Undecided
Andreas Hasenack
Ubuntu ubuntu-21.12

Bug Description

Upstream: tbd
Debian: 7.7.0+dfsg-2
Ubuntu: 7.7.0+dfsg-2ubuntu2

### New Debian Changes ###

heimdal (7.7.0+dfsg-2) unstable; urgency=medium

  * Build using python3. Closes: #936695, #960032.

 -- Brian May <email address hidden> Tue, 12 May 2020 06:56:04 +1000

heimdal (7.7.0+dfsg-1) unstable; urgency=medium

  * New upstream version.
  * Fix CVE-2019-14870: The DelegationNotAllowed Kerberos feature restriction
    was not being applied when processing protocol
    transition requests (S4U2Self), in the AD DC KDC. Closes: #946786.

 -- Brian May <email address hidden> Tue, 17 Dec 2019 20:23:41 +1100

heimdal (7.5.0+dfsg-3) unstable; urgency=high

  * CVE-2018-16860: Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum.
    Closes: #928966.
  * CVE-2019-12098: Always confirm PA-PKINIT-KX for anon PKINIT.
    Closes: #929064.
  * Update test certificates to pre 2038 expiry. Closes: #923930.

 -- Brian May <email address hidden> Tue, 21 May 2019 18:04:35 +1000

heimdal (7.5.0+dfsg-2.1) unstable; urgency=medium

  * Non-maintainer upload
  * Add patch to create headers before building (Closes: 906623)

 -- Hilko Bengen <email address hidden> Sun, 28 Oct 2018 15:10:44 +0100

heimdal (7.5.0+dfsg-2) unstable; urgency=medium

  * Replace 'MAXHOSTNAMELEN' with 'MaxHostNameLen' in kdc/kx509.c for The
    Hurd. Closes: #900079.

 -- Brian May <email address hidden> Sat, 02 Jun 2018 10:01:46 +1000

heimdal (7.5.0+dfsg-1) unstable; urgency=high

  * New upstream version. (Closes: #850723)
    + CVE-2017-17439: Remote unauthenticated DoS in Heimdal-KDC 7.4
      (Closes: #878144, #868157)
    + Refresh patches.
  * Bump Standards-Version to 4.1.2 and compat level to 10.
    + Remove explicit reference to dh-autoreconf.
  * Use uscan to get orig source.
    + Refrain from mangling some bundled RFC texts;
      just exclude the mas they are not installed into any binary anyway.
    + Update d/copyright to DEP-5.
    + Can now use standard uscan/gbp/pristine-tar workflow.
  * Fix some lintian errors/warnings.
    + Strip trailing whitespace from changelog.
    + Fix some duplicate long descriptions.
    + Use optional priority everywhere.
    + Update/remove some overrides.
    + Enforce set -e in maintainer scripts.
    + Enable hardening.
  * Migrate to -dbgsym.
  * Add myself to uploaders.

 -- Dominik George <email address hidden> Fri, 15 Dec 2017 01:13:04 +0100

heimdal (7.4.0.dfsg.1-2) unstable; urgency=medium

  [ Jelmer Vernooij ]
  * Remove myself from uploaders.

  [ Brian May ]
  * Be explicit with heimdal.mkey filename in postinst. Closes: #868638.
  * Tests should respect DEB_BUILD_OPTIONS=nocheck. Closes: #868842.

 -- Brian May <email address hidden> Sun, 23 Jul 2017 10:32:34 +1000

heimdal (7.4.0.dfsg.1-1) unstable; urgency=high

  * New upstream version.
  * Update standards version to 4.0.0.
  * CVE-2017-11103: Fix Orpheus' Lyre KDC-REP service name validation.
    (Closes: #868208).

 -- Brian May <email address hidden> Sat, 15 Jul 2017 19:47:32 +1000

heimdal (7.1.0+dfsg-13) unstable; urgency=medium

  * Add missing symbols base64_decode and base64_encode back into
    libroken. Closes: #848694.

 -- Brian May <email address hidden> Wed, 26 Apr 2017 19:38:20 +1000

heimdal (7.1.0+dfsg-12) unstable; urgency=high

  * Fix transit path validation CVE-2017-6594.

 -- Brian May <email address hidden> Mon, 10 Apr 2017 17:21:35 +1000

heimdal (7.1.0+dfsg-11) unstable; urgency=medium

  * Remove legacy provides/conflicts/replaces headers. Old daemons

### Old Ubuntu Delta ###

heimdal (7.7.0+dfsg-2ubuntu2) impish; urgency=medium

  * Remove symbol rk_closefrom@HEIMDAL_ROKEN_1.0 1.4.0+git20110226
    (LP: #1945787)

 -- Heinrich Schuchardt <email address hidden> Fri, 01 Oct 2021 15:03:02 +0200

heimdal (7.7.0+dfsg-2ubuntu1) impish; urgency=medium

  * Disable lto, to regain dep on roken, otherwise dependencies on amd64
    are different to i386 resulting in different files on amd64 and
    i386. LP: #1934936

 -- Dimitri John Ledkov <email address hidden> Tue, 20 Jul 2021 10:32:53 +0100

heimdal (7.7.0+dfsg-2build1) impish; urgency=medium

  * No-change rebuild due to OpenLDAP soname bump.

 -- Sergio Durigan Junior <email address hidden> Mon, 21 Jun 2021 17:48:49 -0400

See original description
Tags: needs-merge
Andreas Hasenack (ahasenack)
Changed in heimdal (Ubuntu):
assignee: nobody → Andreas Hasenack (ahasenack)
Bryce Harrington (bryce)
description: updated
Changed in heimdal (Ubuntu):
milestone: none → ubuntu-21.11
Andreas Hasenack (ahasenack)
Changed in heimdal (Ubuntu):
milestone: ubuntu-21.11 → ubuntu-21.12
Andreas Hasenack (ahasenack)
Changed in heimdal (Ubuntu):
status: New → In Progress
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package heimdal - 7.7.0+dfsg-3ubuntu1

---------------
heimdal (7.7.0+dfsg-3ubuntu1) jammy; urgency=medium

  * Merge with Debian unstable (LP: #1946860). Remaining changes:
    - Disable lto, to regain dep on roken, otherwise dependencies on amd64
      are different to i386 resulting in different files on amd64 and
      i386. LP #1934936
    - Remove symbol rk_closefrom@HEIMDAL_ROKEN_1.0 1.4.0+git20110226
      (LP #1945787)

 -- Andreas Hasenack <email address hidden> Wed, 08 Dec 2021 18:02:13 -0300

Changed in heimdal (Ubuntu):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.