krb5 1.8.3+dfsg-5ubuntu2.1 source package in Bilimbi Test

Changelog

krb5 (1.8.3+dfsg-5ubuntu2.1) natty-security; urgency=low

  * SECURITY UPDATE: kadmind denial of service from freeing of uninitialized
    pointer.
    - src/kadmin/server/{network,schpw}.c: fix, thanks to upstream.
    - CVE-2011-0285
    - MITKRB5-SA-2011-004
 -- Kees Cook <email address hidden>   Mon, 18 Apr 2011 15:38:18 -0700

Upload details

Uploaded by:
Kees Cook on 2011-04-18
Uploaded to:
Natty
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
net
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Angry Aardvark release on 2011-09-15 universe net

Builds

Natty: [FULLYBUILT] i386

Downloads

File Size SHA-256 Checksum
krb5_1.8.3+dfsg.orig.tar.gz 11.0 MiB ed8b74faedee22ab961c6acaea17e5801aa89dc904a44457ef13bb5a297c83eb
krb5_1.8.3+dfsg-5ubuntu2.1.diff.gz 104.8 KiB 046fdb26ef65659640bffc98c9125dc80867fc1bfcf748cc0d25a0e7fb144dc7
krb5_1.8.3+dfsg-5ubuntu2.1.dsc 2.3 KiB b60175df83110752d5179d521fbdbdfc3dd6ce6aba63071b73d5c450c605ea11

View changes file

Binary packages built by this source

krb5-admin-server: MIT Kerberos master server (kadmind)

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the Kerberos master server (kadmind), which handles
 account creations and deletions, password changes, and other
 administrative commands via the Kerberos admin protocol. It also
 contains the command used by the master KDC to propagate its database to
 slave KDCs. This package is generally only used on the master KDC for a
 Kerberos realm.

krb5-kdc: MIT Kerberos key server (KDC)

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the Kerberos key server (KDC). The KDC manages all
 authentication credentials for a Kerberos realm, holds the master keys
 for the realm, and responds to authentication requests. This package
 should be installed on both master and slave KDCs.

krb5-kdc-ldap: MIT Kerberos key server (KDC) LDAP plugin

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the LDAP plugin for the Kerberos key server (KDC)
 and supporting utilities. This plugin allows the KDC data to be stored
 in an LDAP server rather than the default local database. It should be
 installed on both master and slave KDCs that use LDAP as a storage
 backend.

krb5-multidev: Development files for MIT Kerberos without Heimdal conflict

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 Most users wishing to build applications against MIT Kerberos should
 install libkrb5-dev. However, that package conflicts with heimdal-dev.
 This package installs libraries and headers in /usr/include/mit-krb5 and
 /usr/lib/mit-krb5 and can be installed along side heimdal-multidev, which
 provides the same facilities for Heimdal.

krb5-pkinit: PKINIT plugin for MIT Kerberos

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains a plugin for the PKINIT protocol, which allows
 Kerberos tickets to be obtained using public-key credentials such as
 X.509 certificates or a smart card. This plugin can be used by the
 client libraries and the KDC.

krb5-user: Basic programs to authenticate using MIT Kerberos

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the basic programs to authenticate to MIT Kerberos,
 change passwords, and talk to the admin server (to create and delete
 principals, list principals, etc.).

libgssapi-krb5-2: MIT Kerberos runtime libraries - krb5 GSS-API Mechanism

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the runtime library for the MIT Kerberos
 implementation of GSS-API used by applications and Kerberos clients.

libgssrpc4: MIT Kerberos runtime libraries - GSS enabled ONCRPC

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains an RPC library used by the Kerberos administrative
 programs and potentially other applications.

libk5crypto3: MIT Kerberos runtime libraries - Crypto Library

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the runtime cryptography libraries used by
 applications and Kerberos clients.

libkadm5clnt-mit7: MIT Kerberos runtime libraries - Administration Clients

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the runtime library used by clients of the Kerberos
 administration protocol.

libkadm5srv-mit7: MIT Kerberos runtime libraries - KDC and Admin Server

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the runtime library used by Kerberos administrative
 servers.

libkdb5-4: MIT Kerberos runtime libraries - Kerberos database

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the internal Kerberos database libraries.

libkrb5-3: MIT Kerberos runtime libraries

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the runtime library for the main Kerberos v5 API
 used by applications and Kerberos clients.

libkrb5-dbg: Debugging files for MIT Kerberos

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the debugging information for the MIT Kerberos
 libraries. Install this package if you need to trace problems inside the
 MIT Kerberos libraries with a debugger.

libkrb5-dev: Headers and development libraries for MIT Kerberos

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains the symlinks, headers, and development libraries
 needed to compile and link programs that use the Kerberos libraries.

libkrb5support0: MIT Kerberos runtime libraries - Support library

 Kerberos is a system for authenticating users and services on a network.
 Kerberos is a trusted third-party service. That means that there is a
 third party (the Kerberos server) that is trusted by all the entities on
 the network (users and services, usually called "principals").
 .
 This is the MIT reference implementation of Kerberos V5.
 .
 This package contains an internal runtime support library used by other
 Kerberos libraries.