Ubuntu
heimdal package

Merge heimdal from Debian unstable for kinetic

Bug #1971280 reported by Bryce Harrington
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
heimdal (Ubuntu)
Fix Released
Undecided
Bryce Harrington
Ubuntu ubuntu-22.06

Bug Description

Upstream: tbd
Debian: 7.7.0+dfsg-3
Ubuntu: 7.7.0+dfsg-3ubuntu1

### New Debian Changes ###

heimdal (7.7.0+dfsg-3) unstable; urgency=high

  * Fix CVE-2021-3671: A null pointer de-reference was found in the way
    samba kerberos server handled missing sname in TGS-REQ. Closes: #996586.
  * Fix autoconf 2.7 issues.

 -- Brian May <email address hidden> Wed, 17 Nov 2021 12:12:45 +1100

heimdal (7.7.0+dfsg-2) unstable; urgency=medium

  * Build using python3. Closes: #936695, #960032.

 -- Brian May <email address hidden> Tue, 12 May 2020 06:56:04 +1000

heimdal (7.7.0+dfsg-1) unstable; urgency=medium

  * New upstream version.
  * Fix CVE-2019-14870: The DelegationNotAllowed Kerberos feature restriction
    was not being applied when processing protocol
    transition requests (S4U2Self), in the AD DC KDC. Closes: #946786.

 -- Brian May <email address hidden> Tue, 17 Dec 2019 20:23:41 +1100

heimdal (7.5.0+dfsg-3) unstable; urgency=high

  * CVE-2018-16860: Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum.
    Closes: #928966.
  * CVE-2019-12098: Always confirm PA-PKINIT-KX for anon PKINIT.
    Closes: #929064.
  * Update test certificates to pre 2038 expiry. Closes: #923930.

 -- Brian May <email address hidden> Tue, 21 May 2019 18:04:35 +1000

heimdal (7.5.0+dfsg-2.1) unstable; urgency=medium

  * Non-maintainer upload
  * Add patch to create headers before building (Closes: 906623)

 -- Hilko Bengen <email address hidden> Sun, 28 Oct 2018 15:10:44 +0100

heimdal (7.5.0+dfsg-2) unstable; urgency=medium

  * Replace 'MAXHOSTNAMELEN' with 'MaxHostNameLen' in kdc/kx509.c for The
    Hurd. Closes: #900079.

 -- Brian May <email address hidden> Sat, 02 Jun 2018 10:01:46 +1000

heimdal (7.5.0+dfsg-1) unstable; urgency=high

  * New upstream version. (Closes: #850723)
    + CVE-2017-17439: Remote unauthenticated DoS in Heimdal-KDC 7.4
      (Closes: #878144, #868157)
    + Refresh patches.
  * Bump Standards-Version to 4.1.2 and compat level to 10.
    + Remove explicit reference to dh-autoreconf.
  * Use uscan to get orig source.
    + Refrain from mangling some bundled RFC texts;
      just exclude the mas they are not installed into any binary anyway.
    + Update d/copyright to DEP-5.
    + Can now use standard uscan/gbp/pristine-tar workflow.
  * Fix some lintian errors/warnings.
    + Strip trailing whitespace from changelog.
    + Fix some duplicate long descriptions.
    + Use optional priority everywhere.
    + Update/remove some overrides.
    + Enforce set -e in maintainer scripts.
    + Enable hardening.
  * Migrate to -dbgsym.
  * Add myself to uploaders.

 -- Dominik George <email address hidden> Fri, 15 Dec 2017 01:13:04 +0100

heimdal (7.4.0.dfsg.1-2) unstable; urgency=medium

  [ Jelmer Vernooij ]
  * Remove myself from uploaders.

  [ Brian May ]
  * Be explicit with heimdal.mkey filename in postinst. Closes: #868638.
  * Tests should respect DEB_BUILD_OPTIONS=nocheck. Closes: #868842.

 -- Brian May <email address hidden> Sun, 23 Jul 2017 10:32:34 +1000

heimdal (7.4.0.dfsg.1-1) unstable; urgency=high

  * New upstream version.
  * Update standards version to 4.0.0.
  * CVE-2017-11103: Fix Orpheus' Lyre KDC-REP service name validation.
    (Closes: #868208).

 -- Brian May <email address hidden> Sat, 15 Jul 2017 19:47:32 +1000

heimdal (7.1.0+dfsg-13) unstable; urgency=medium

  * Add missing symbols base64_decode and base64_encode back into
    libroken. Closes: #848694.

 -- Brian May <email address hidden> Wed, 26 Apr 2017 19:38:20 +1000

heimdal (7.1.0+dfsg-12) unstable; urgency=high

### Old Ubuntu Delta ###

heimdal (7.7.0+dfsg-3ubuntu1) jammy; urgency=medium

  * Merge with Debian unstable (LP: #1946860). Remaining changes:
    - Disable lto, to regain dep on roken, otherwise dependencies on amd64
      are different to i386 resulting in different files on amd64 and
      i386. LP #1934936
    - Remove symbol rk_closefrom@HEIMDAL_ROKEN_1.0 1.4.0+git20110226
      (LP #1945787)

 -- Andreas Hasenack <email address hidden> Wed, 08 Dec 2021 18:02:13 -0300

Bryce Harrington (bryce)
Changed in heimdal (Ubuntu):
milestone: none → ubuntu-22.05
Revision history for this message
Bryce Harrington (bryce) wrote :

No newer merge is available yet.

Changed in heimdal (Ubuntu):
status: New → Incomplete
milestone: ubuntu-22.05 → ubuntu-22.06
Utkarsh Gupta (utkarsh)
Changed in heimdal (Ubuntu):
assignee: nobody → Utkarsh Gupta (utkarsh)
Revision history for this message
Andreas Hasenack (ahasenack) wrote :

There is -4 now

Changed in heimdal (Ubuntu):
status: Incomplete → Triaged
Bryce Harrington (bryce)
Changed in heimdal (Ubuntu):
assignee: Utkarsh Gupta (utkarsh) → Bryce Harrington (bryce)
status: Triaged → In Progress
Bryce Harrington (bryce)
Changed in heimdal (Ubuntu):
status: In Progress → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package heimdal - 7.7.0+dfsg-4ubuntu1

---------------
heimdal (7.7.0+dfsg-4ubuntu1) kinetic; urgency=medium

  * Merge with Debian unstable (LP: #1971280). Remaining changes:
    - d/rules: Disable lto, to regain dep on roken, otherwise
      dependencies on amd64 are different than i386 resulting in
      different files on amd64 and i386.
      (LP #1934936)
    - d/libroken18-heimdal.symbols: Remove symbol
      rk_closefrom@HEIMDAL_ROKEN_1.0 1.4.0+git20110226 Applied verbatim
      debdiff from Heinrich Schuchardt (xypron).
      (LP #1945787)

 -- Bryce Harrington <email address hidden> Wed, 20 Jul 2022 16:52:39 -0700

Changed in heimdal (Ubuntu):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.