-
libpam-krb5 (4.7-4+deb9u1) stretch-security; urgency=high
* SECURITY: Fix potential one-byte buffer overflow when the underlying
Kerberos library initiates prompting (such as for PKINIT or when the
no_prompt PAM option is set). (CVE-2020-10595)
-- Russ Allbery <email address hidden> Sun, 22 Mar 2020 21:22:06 -0700
-
libpam-krb5 (4.7-4) unstable; urgency=medium
* Re-add libpam-heimdal now that Heimdal upstream has released a new
stable version and seems to be active again.
* Update to debhelper compatibility level V10.
- Remove explicit build dependency on dh-autoreconf.
- Remove explicit --parallel and autoreconf module flags.
* Drop "v5" from package long descriptions. Kerberos v5 is now the only
meaningful version of Kerberos, and there's no reason to qualify it.
* Remove libpam0g version qualification on dependency. The required
version is older than oldstable.
-- Russ Allbery <email address hidden> Sat, 31 Dec 2016 13:42:47 -0800
-
libpam-krb5 (4.7-3) unstable; urgency=medium
* Drop libpam-heimdal since Heimdal is being removed from testing (and
possibly unstable) as being too buggy and too unsupported upstream for
Debian to support. See #837728. (Closes: #837716)
* Document restrictions around minimum_uid and pam-auth-update in
README.Debian (see #756880).
* Switch to the DEP-14 branch layout and update debian/gbp.conf and
Vcs-Git accordingly.
* Switch to https for all package metadata URLs.
* Run wrap-and-sort -ast on packaging files.
* Refresh upstream signing key.
* Update standards version to 3.9.8 (no changes required).
-- Russ Allbery <email address hidden> Wed, 19 Oct 2016 11:44:18 -0700
-
libpam-krb5 (4.7-2) unstable; urgency=medium
* Upload to unstable.
* Refresh upstream signing key.
* Add debian/gbp.conf reflecting the branch layout of the default
packaging repository.
-- Russ Allbery <email address hidden> Sun, 26 Apr 2015 20:23:59 -0700
