-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: alpha Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: Debian Build Daemon Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: 4c0d6cda84d9f7e78fa91a98d9043d24fe46bad4 179996 libkadm55_1.6.dfsg.4~beta1-5lenny6_alpha.deb 4efc25747d7903b2e7a6a92b85cfaa837b82d56d 538936 libkrb53_1.6.dfsg.4~beta1-5lenny6_alpha.deb 5848245d4264a5b7aeef2f8aa408dd04c9a1ec81 150098 krb5-user_1.6.dfsg.4~beta1-5lenny6_alpha.deb 21c769cc52c064f1f20f4348ff9a955005715ec5 255778 krb5-clients_1.6.dfsg.4~beta1-5lenny6_alpha.deb a5c3c1646d9c6f1d1795aa5fb5d9935d29385e16 98862 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_alpha.deb c9922168a24c7cba0ad17d521d9add007bbcc632 72510 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_alpha.deb 12b94b82b09f2f2ff00a377d743816ecf4adbc0f 83438 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_alpha.deb 4d2fa059a91038334f888160ec13baa1587f071c 219658 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_alpha.deb 14db2575a4c757014590122c7df118f6d18d02ee 113144 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_alpha.deb 4fff4c3d04c51240e68692d55575e4b1884568ff 98788 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_alpha.deb ffbd8057c6b2a769c1ee90f25cc55d22f36f97d5 93104 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_alpha.deb ea98ffcbea503864986b07872268fdf990d612e9 1352374 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_alpha.deb 57a9505723a781d95803d73ccdd2d76c451dd2f7 70572 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_alpha.deb Checksums-Sha256: 74538618854ed73a847725e3dc16cf381288904196a8bf196ae5c48ce66d7f99 179996 libkadm55_1.6.dfsg.4~beta1-5lenny6_alpha.deb 9d35f54551b677610c082b7185fabea9818083f066524e8689274cd33715d839 538936 libkrb53_1.6.dfsg.4~beta1-5lenny6_alpha.deb 1d56d353a9aa82ca513ce0635eebe9a2b36ddd300d336089d6c9e9ae8542bc96 150098 krb5-user_1.6.dfsg.4~beta1-5lenny6_alpha.deb e8363de547e127398e4d62773da1a72daa941bfc4a980625f2c413b325347501 255778 krb5-clients_1.6.dfsg.4~beta1-5lenny6_alpha.deb 39ea667337292f5225628ac1e642b94db1e66bda6076899aec55c685a45bc905 98862 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_alpha.deb ea5bac677bf2cc868000555ca8acc6d5ea1c48456ffea2c5aec200798abb171e 72510 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_alpha.deb f639a18b46d8e97905d794e7ec88b8dd823c670b91e0880b5b377327cb3c5fea 83438 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_alpha.deb 035e83faf3e14db2047d2bf730c1525c499b7c4128f60e9d512bec9e5208aeb0 219658 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_alpha.deb cbcc713182b28be8f1e2f603fc3efaeab29dd6ee302620b9471092fdf95557f8 113144 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_alpha.deb 02587d8f7f89c3e6ad8ca12b879f350adb66d93b22568dbae0f35a036308c966 98788 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_alpha.deb 68121109ba95e49bbbad9923aef6da3e31f141c8982be2ee701abe72c294291c 93104 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_alpha.deb 2b1e6acce5003073cd4be103aab9cbba290d0706bc410c837cf9f090ab048214 1352374 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_alpha.deb 49c3ca0a1d4809c68b4492b7ca3c334ca76025a13f435eb2db477fd32eca3ec3 70572 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_alpha.deb Files: 1308d85575bc72553091415ddf495f1d 179996 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_alpha.deb 53fa646ff8cd2cbfeaedec1f163658a0 538936 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_alpha.deb 2d6b0db75b4fb0cbaf9f35ae3222418a 150098 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_alpha.deb 75c8eef8f51aeae3fe00e861a369958b 255778 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_alpha.deb 54f5ec1148fd23369ad3939668ebf354 98862 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_alpha.deb 006248eab3a97b16f58672cd071ad364 72510 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_alpha.deb ef4ea5d711704df27427ff9f31adf0ea 83438 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_alpha.deb 01d18db8606f3b0df1e573663bfa3304 219658 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_alpha.deb 9d90e615677c2e53902e85465cbd8765 113144 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_alpha.deb 780c1bcf6bccd01c5ab309be264917cc 98788 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_alpha.deb 063e77172ad83b511cec94744897774a 93104 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_alpha.deb 008f7018c0f89e6a4a65efceb6670ffe 1352374 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_alpha.deb e344d6c4b97d5cb687c545a8c23bd509 70572 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_alpha.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFM7DLQbxelr8HyTqQRAksmAJ9K/X46+ilpXarlW++9kNtZol0iywCg1BkY qlUGYMJc/tQTfE7PlcP8t/8= =PfyN -----END PGP SIGNATURE-----