Format: 1.8 Date: Fri, 08 Aug 2014 14:58:49 -0400 Source: krb5 Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev libkrb5-dev libkrb5-dbg krb5-pkinit krb5-otp krb5-doc libkrb5-3 libgssapi-krb5-2 libgssrpc4 libkadm5srv-mit9 libkadm5srv-mit8 libkadm5clnt-mit9 libk5crypto3 libkdb5-7 libkrb5support0 libkrad0 krb5-gss-samples krb5-locales libkrad-dev Architecture: all i386_translations i386 Version: 1.12+dfsg-2ubuntu4.2 Distribution: trusty Urgency: medium Maintainer: Ubuntu/amd64 Build Daemon Changed-By: Marc Deslauriers Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-doc - Documentation for MIT Kerberos krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-locales - Internationalization support for MIT Kerberos krb5-multidev - Development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit9 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit8 - transitional dummy package for libkadm5srv-mit9 libkadm5srv-mit9 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-7 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Changes: krb5 (1.12+dfsg-2ubuntu4.2) trusty-security; urgency=medium . * SECURITY UPDATE: denial of service via invalid tokens - debian/patches/CVE-2014-4341-4342.patch: handle invalid tokens in src/lib/gssapi/krb5/k5unseal.c, src/lib/gssapi/krb5/k5unsealiov.c. - CVE-2014-4341 - CVE-2014-4342 * SECURITY UPDATE: denial of service via double-free in SPNEGO - debian/patches/CVE-2014-4343.patch: fix double-free in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2014-4343 * SECURITY UPDATE: denial of service via null deref in SPNEGO acceptor - debian/patches/CVE-2014-4344.patch: validate REMAIN in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2014-4344 * SECURITY UPDATE: denial of service and possible code execution in kadmind with LDAP backend - debian/patches/CVE-2014-4345.patch: fix off-by-one in src/plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c - CVE-2014-4345 Checksums-Sha1: 2b1985d5662f8b80fc3e91f3e333f5efc1070c2e 2051522 krb5-doc_1.12+dfsg-2ubuntu4.2_all.deb 1358704833baaabd5cb8a958e51a2337245fe56d 12420 libkadm5srv-mit8_1.12+dfsg-2ubuntu4.2_all.deb 4de353f7ed7e8db4ce4e89b1e2b1236e9d5eaa7b 12620 krb5-locales_1.12+dfsg-2ubuntu4.2_all.deb 49353e90a4c97702678fcb32f660ee22e58427f6 62860 krb5_1.12+dfsg-2ubuntu4.2_i386_translations.tar.gz 9aefa5c5b54465f0de071181f4b3bd9ceccec47a 93056 krb5-user_1.12+dfsg-2ubuntu4.2_i386.deb 4ff39a199beb4b5ccf598baffd8add232bf3fdc5 167066 krb5-kdc_1.12+dfsg-2ubuntu4.2_i386.deb 225da4532b138623546486b5e8c4110ab70a60e6 76166 krb5-kdc-ldap_1.12+dfsg-2ubuntu4.2_i386.deb 68a16101e037ac03484e8e5324fb745e038bbbb5 79996 krb5-admin-server_1.12+dfsg-2ubuntu4.2_i386.deb a59561603c78889db49e6ba6d0437d9248e92d32 110924 krb5-multidev_1.12+dfsg-2ubuntu4.2_i386.deb ee2dd7592e5480111de0f203f2f90fb82bde7d36 14410 libkrb5-dev_1.12+dfsg-2ubuntu4.2_i386.deb 316b5d1c0cbd4c92fc8ccd4f6ad080286307e5a5 1356426 libkrb5-dbg_1.12+dfsg-2ubuntu4.2_i386.deb ff6e5f36bcd17494abb5f76d58415f2d60c07c3c 50724 krb5-pkinit_1.12+dfsg-2ubuntu4.2_i386.deb 681ba4eddc382a5cb8e50e901378ad138eeb3259 16824 krb5-otp_1.12+dfsg-2ubuntu4.2_i386.deb 06230587168c6486914f9c4286f0e64172d8b864 259666 libkrb5-3_1.12+dfsg-2ubuntu4.2_i386.deb 6b4f68f9e744524f96afe4ebcb2b56666a5382fa 111334 libgssapi-krb5-2_1.12+dfsg-2ubuntu4.2_i386.deb 9712706bbd6847b170d2a05fcd5dcfa8c1c753bb 52528 libgssrpc4_1.12+dfsg-2ubuntu4.2_i386.deb cecb1a90aef8115862fed5d3fa6e782b2423b609 49902 libkadm5srv-mit9_1.12+dfsg-2ubuntu4.2_i386.deb fefe7901dca8adf3ad0e2b90e06fc337f4a0266b 35372 libkadm5clnt-mit9_1.12+dfsg-2ubuntu4.2_i386.deb 0be75a32f23bc9a740ba646e5ce0c03a37686b3d 77662 libk5crypto3_1.12+dfsg-2ubuntu4.2_i386.deb 7fcb7af905303d1bbd4638bf3b50286820b2a8a2 36048 libkdb5-7_1.12+dfsg-2ubuntu4.2_i386.deb 2f1319ea5a9829eae8ed0162c0c0f8911a5c49b7 30116 libkrb5support0_1.12+dfsg-2ubuntu4.2_i386.deb d2b05db5df504ce21fbde9fa42da3d45ea9ab2b8 20894 libkrad0_1.12+dfsg-2ubuntu4.2_i386.deb 854d5b1e9f470fee491c5e86533f5c2cac586817 25180 krb5-gss-samples_1.12+dfsg-2ubuntu4.2_i386.deb 0ffedf790b1a4d1852ea88f2e05a821285a7b7c1 11908 libkrad-dev_1.12+dfsg-2ubuntu4.2_i386.deb Checksums-Sha256: 3655e2797f1fadca4fe431bb23ec7efb46ec3b94a98ad08e72c70047472dd02c 2051522 krb5-doc_1.12+dfsg-2ubuntu4.2_all.deb 820feb18333bbf91ca72ca23221de6f8e8f8cf78f81b6e24c6c6448defefaafc 12420 libkadm5srv-mit8_1.12+dfsg-2ubuntu4.2_all.deb 35923baa14eef11e40730a3842dc35e5cbc7c39a562a2420d3757998695b8e10 12620 krb5-locales_1.12+dfsg-2ubuntu4.2_all.deb 8b2b25bf56b7b59b0f8f1a842ace921d3b1e55f21c6b5fa8527d991fd83889ed 62860 krb5_1.12+dfsg-2ubuntu4.2_i386_translations.tar.gz e04654757c4187c761f38d03fd84a4c9a4de168e148967dc6a97b33f30e9a321 93056 krb5-user_1.12+dfsg-2ubuntu4.2_i386.deb cfe23e5f1359d719ed94b3bea44923cf70666c7bdba61b2aa8fb6f0ab7bbbbb5 167066 krb5-kdc_1.12+dfsg-2ubuntu4.2_i386.deb 35aaad424600c57555d8640b0aa3ad04322c2f69172c55970858b25f481d370a 76166 krb5-kdc-ldap_1.12+dfsg-2ubuntu4.2_i386.deb 837ab36b5453fbe94ef38806eacf9898c39f9a449c6144ee377898c95a1284ea 79996 krb5-admin-server_1.12+dfsg-2ubuntu4.2_i386.deb 7b4df04487901f1371bf2c7d0da2c63682fa2fe3ace74b7340ce49d70753089d 110924 krb5-multidev_1.12+dfsg-2ubuntu4.2_i386.deb d07f6ec4f40964d4899170127d3e1207674330ba14fb8f1284c61d49a67a5a71 14410 libkrb5-dev_1.12+dfsg-2ubuntu4.2_i386.deb fc54ade694aa2b919c462de72785f47bcf064ce05ebb8a0ecebeed465492f538 1356426 libkrb5-dbg_1.12+dfsg-2ubuntu4.2_i386.deb 9381c27d0b3a062f5936e0f306c19418595bcd2969620ad73ecfb67a48685c6a 50724 krb5-pkinit_1.12+dfsg-2ubuntu4.2_i386.deb 3272466988a8b468a5ebe0660fb121a981d85c0a6fb1e500191d7c598725bfc7 16824 krb5-otp_1.12+dfsg-2ubuntu4.2_i386.deb 7d30adce906f9f6364fd8931f261d7e28a0af7cb0bbda0305b56c239152f778b 259666 libkrb5-3_1.12+dfsg-2ubuntu4.2_i386.deb 2aa1caf365d2ba21020c58526de57c84cdbe2051f1f1fd611fa5abe47ca03a28 111334 libgssapi-krb5-2_1.12+dfsg-2ubuntu4.2_i386.deb 7a276b1802f57e090aef5e885ad0a7e4b3d73f252db355ace052c208acacf807 52528 libgssrpc4_1.12+dfsg-2ubuntu4.2_i386.deb c1bcab44977b4f61954e19291fd3161c38330ff9b6162270984a85a3a2f9d6a7 49902 libkadm5srv-mit9_1.12+dfsg-2ubuntu4.2_i386.deb 094de839172204f32b57d19774083387e002bd86b271e4687b858f6995af3980 35372 libkadm5clnt-mit9_1.12+dfsg-2ubuntu4.2_i386.deb e511a5b8f7ce4d04e563aa99ab71d768a7301fce74f36cd06f6f20df6802a3c1 77662 libk5crypto3_1.12+dfsg-2ubuntu4.2_i386.deb 9d032f3828a1a1a67786c92d3d4bb19a74167327330dccd0104b735953b03a3d 36048 libkdb5-7_1.12+dfsg-2ubuntu4.2_i386.deb 20e874720a0f326678400a61d80d1f70eb9aaa37c7f809a16ddfe174cd7551c8 30116 libkrb5support0_1.12+dfsg-2ubuntu4.2_i386.deb 9142f60ffe837bebdb3942f543030ae907a057786c0bb5528be584e5c4014e84 20894 libkrad0_1.12+dfsg-2ubuntu4.2_i386.deb 8f3b64cb08014c31dec5765d394c3100734282aa3b3bfd861696cb15d2ca1a7c 25180 krb5-gss-samples_1.12+dfsg-2ubuntu4.2_i386.deb fc199974d865a6e7191150cfa371bfd572cc8f4c611d345b43a229d077bdce40 11908 libkrad-dev_1.12+dfsg-2ubuntu4.2_i386.deb Files: 9ad1c959f908eb09a3b2ebce939a64fa 2051522 doc optional krb5-doc_1.12+dfsg-2ubuntu4.2_all.deb f96e9e140477c5d0477c287033d9ca75 12420 oldlibs extra libkadm5srv-mit8_1.12+dfsg-2ubuntu4.2_all.deb 82a633f64f0a1bb27ac6987b08dab880 12620 localization standard krb5-locales_1.12+dfsg-2ubuntu4.2_all.deb ba56867eb210bca0098e0e91ab25cd20 62860 raw-translations - krb5_1.12+dfsg-2ubuntu4.2_i386_translations.tar.gz ac6e9ac8e858221e873b0e3f45398d4e 93056 net optional krb5-user_1.12+dfsg-2ubuntu4.2_i386.deb 404ac66314ef0ca92b7109efab7ed902 167066 net optional krb5-kdc_1.12+dfsg-2ubuntu4.2_i386.deb 2097fb2ea9a60ee30be8d37eef903d47 76166 net extra krb5-kdc-ldap_1.12+dfsg-2ubuntu4.2_i386.deb 34fb487527aceb9770273c4c78eeea65 79996 net optional krb5-admin-server_1.12+dfsg-2ubuntu4.2_i386.deb 14021a38c650ad0c9bb3124ba14f0e97 110924 libdevel optional krb5-multidev_1.12+dfsg-2ubuntu4.2_i386.deb fdbd8c716f04d24ddbfe5fe22baaf4b9 14410 libdevel extra libkrb5-dev_1.12+dfsg-2ubuntu4.2_i386.deb efe35997ef57e42920d8a13dc27e07b0 1356426 debug extra libkrb5-dbg_1.12+dfsg-2ubuntu4.2_i386.deb 66034e64c79c01f8b06cdb99feab842d 50724 net extra krb5-pkinit_1.12+dfsg-2ubuntu4.2_i386.deb 7a1ceefede6477a761d5bd111642c21e 16824 net extra krb5-otp_1.12+dfsg-2ubuntu4.2_i386.deb 469ed7acc5a361f98279327ff00e89bd 259666 libs standard libkrb5-3_1.12+dfsg-2ubuntu4.2_i386.deb 7043a6aca34fa4947977a8f43d840029 111334 libs standard libgssapi-krb5-2_1.12+dfsg-2ubuntu4.2_i386.deb 522243861e6a2584a0eeff8d6279903d 52528 libs standard libgssrpc4_1.12+dfsg-2ubuntu4.2_i386.deb d18aef0ce4d0ef9bd84dc97d27a25eb2 49902 libs standard libkadm5srv-mit9_1.12+dfsg-2ubuntu4.2_i386.deb 29ba2ad9bbb85f1cdf7a92dda3e1bc27 35372 libs standard libkadm5clnt-mit9_1.12+dfsg-2ubuntu4.2_i386.deb a3935ac0b9f447571941a975d560a092 77662 libs standard libk5crypto3_1.12+dfsg-2ubuntu4.2_i386.deb bca3fa2b513ce44d5c89b9d5bb6d307e 36048 libs standard libkdb5-7_1.12+dfsg-2ubuntu4.2_i386.deb e21ed8b15026cdfdebd88774a17f81b9 30116 libs standard libkrb5support0_1.12+dfsg-2ubuntu4.2_i386.deb 436382426aef705b26cfeda8f5fd5ec1 20894 libs standard libkrad0_1.12+dfsg-2ubuntu4.2_i386.deb 10fb94a211c8b24694a43e3537e92598 25180 net extra krb5-gss-samples_1.12+dfsg-2ubuntu4.2_i386.deb 74ed62e3d74a1dc3eb21303df814986f 11908 libdevel extra libkrad-dev_1.12+dfsg-2ubuntu4.2_i386.deb Original-Maintainer: Sam Hartman