Sync krb5 1.8.3+dfsg-2 (main) from Debian unstable (main)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
krb5 (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
affects ubuntu/krb5
status confirmed
importance wishlist
subscribe ubuntu-archive
done
Please sync krb5 1.8.3+dfsg-2 (main) from Debian unstable (main)
Explanation of the Ubuntu delta and why it can be dropped:
Ubuntu changes are in Debian too now (MITKRB5-
Changelog entries since current natty version 1.8.1+dfsg-
krb5 (1.8.3+dfsg-2) unstable; urgency=high
* MITKRB5-SA-2010-006 [CVE-2010-1322]: null pointer dereference in
kdc_authdata.c leading to KDC crash, Closes: #599237
* Fix two memory leaks in krb5_get_init_creds path; one of these memory
leaks is quite common for any application such as PAM or kinit that
gets initial credentials, thanks Bastian Blank, Closes: #598032
* Install doc/CHANGES only in krb5-doc, not in all packages, saves
several megabytes on most Debian systems, Closes: #599562
-- Sam Hartman <email address hidden> Wed, 13 Oct 2010 10:41:19 -0400
krb5 (1.8.3+dfsg-1) unstable; urgency=low
* New Upstream release; only change is version bump from beta1 to final
* Bring back a libkrb53 oldlibs package. Note that this is technically a
policy violation because it doesn't provide libdes425.so.3 or
libkrb4.so.2 and thus provides a different ABI. However, some
packages, such as postgres8.4 require the lenny version to be present
for the squeeze transition, so we cannot force the removal of
libkrb53's reverse dependencies. We can conflict or break with lenny
packages that will not work with this libkrb53, but we may break
out-of-archive packages without notice. Absent someone coming up with
a patch to the modern libk5crypto-3 that allows it to work with the
lenny libkrb53 (a weekend's worth of work proved this would be quite
difficult), this is the best solution we've come up with, Closes: #596678
-- Sam Hartman <email address hidden> Sun, 19 Sep 2010 14:59:46 -0400
krb5 (1.8.3+
* Remove documentation that has moved to the krb5-appl package and is
not shipped upstream from Debian diff
-- Sam Hartman <email address hidden> Tue, 10 Aug 2010 15:33:15 -0400
krb5 (1.8.3+
* New Upstream version
* Add breaks with libkrb53 because libdes425 cannot work with new
libk5crypto3 (Closes: #557929)
* You want this version: it fixes an incompatibility with how PACs are
verified with Windows 2008
* As a result of libkrb53 breaks, we no longer get into problems with
krb5int_hmac, Closes: #566988
* Note that libkdb5-4 breaks rather than conflicts libkadm5srv6, Closes:
#565429
* Start kdc before x display managers, Closes: #588536
-- Sam Hartman <email address hidden> Thu, 05 Aug 2010 12:15:50 -0400
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Kees Cook <email address hidden>
iQIcBAEBCgAGBQJ
GgvQkeZPfYtXhV6
aXcHgqHQKPEY3s2
SgqC0U1jq0IP4aF
vPL1FNoASJgqQVI
M1EYBaT+
Srn5icCWBO1wiYe
uau6EZIbbGvQv4A
UJxwtBYwy/
AkOFUWMU8tPKXKR
KmTa/5WQbEGUQA4
D46k8ZhW9nlnRu0
=YLbr
-----END PGP SIGNATURE-----
[Updating] krb5 (1.8.1+ dfsg-5ubuntu0. 1 [Ubuntu] < 1.8.3+dfsg-2 [Debian]) 8.3+dfsg- 2.dsc: downloading from http:// ftp.debian. org/debian/> 8.3+dfsg- 2.diff. gz: downloading from http:// ftp.debian. org/debian/> 8.3+dfsg. orig.tar. gz: downloading from http:// ftp.debian. org/debian/> 1.8.1+dfsg- 5ubuntu0. 1 [main]. 1.8.1+dfsg- 5ubuntu0. 1 [universe]. ldap_1. 8.1+dfsg- 5ubuntu0. 1 [universe]. server_ 1.8.1+dfsg- 5ubuntu0. 1 [universe]. 1.8.1+dfsg- 5ubuntu0. 1 [main]. dev_1.8. 1+dfsg- 5ubuntu0. 1 [main]. dbg_1.8. 1+dfsg- 5ubuntu0. 1 [main]. 1.8.1+dfsg- 5ubuntu0. 1 [universe]. 1.8.1+dfsg- 5ubuntu0. 1 [main]. 3_1.8.1+ dfsg-5ubuntu0. 1 [main]. krb5-2_ 1.8.1+dfsg- 5ubuntu0. 1 [main]. 1.8.1+dfsg- 5ubuntu0. 1 [main]. mit7_1. 8.1+dfsg- 5ubuntu0. 1 [main]. mit7_1. 8.1+dfsg- 5ubuntu0. 1 [main]. 1.8.1+dfsg- 5ubuntu0. 1 [main]. 4_1.8.1+ dfsg-5ubuntu0. 1 [main]. _1.8.1+ dfsg-5ubuntu0. 1 [main].
* Trying to add krb5...
2010-11-08 11:14:46 INFO - <krb5_1.
2010-11-08 11:14:46 INFO - <krb5_1.
2010-11-08 11:14:46 INFO - <krb5_1.
I: krb5 [main] -> krb5-user_
I: krb5 [main] -> krb5-kdc_
I: krb5 [main] -> krb5-kdc-
I: krb5 [main] -> krb5-admin-
I: krb5 [main] -> krb5-multidev_
I: krb5 [main] -> libkrb5-
I: krb5 [main] -> libkrb5-
I: krb5 [main] -> krb5-pkinit_
I: krb5 [main] -> krb5-doc_
I: krb5 [main] -> libkrb5-
I: krb5 [main] -> libgssapi-
I: krb5 [main] -> libgssrpc4_
I: krb5 [main] -> libkadm5srv-
I: krb5 [main] -> libkadm5clnt-
I: krb5 [main] -> libk5crypto3_
I: krb5 [main] -> libkdb5-
I: krb5 [main] -> libkrb5support0