Git : Code : krb5 package : Ubuntu

Ubuntu
krb5 package

Overview
Code
Bugs
Blueprints
Translations
Answers

View Bazaar branches

Get this repository:: git clone https://git.launchpad.net/ubuntu/+source/krb5

Members of Ubuntu Server Dev import team can upload to this repository. Log in for directions.

Branches

Name	Last Modified	Last Commit
importer/ubuntu/dsc	2018-11-16 13:23:30 UTC 15 minutes ago	DSC file for 1.16.1-1ubuntu1 Author: Ubuntu Git Importer Author Date: 2018-11-16 13:23:30 UTC DSC file for 1.16.1-1ubuntu1
ubuntu/disco-proposed	2018-11-16 13:08:16 UTC 31 minutes ago	Import patches-unapplied version 1.16.1-1ubuntu1 to ubuntu/disco-proposed Author: Andreas Hasenack Author Date: 2018-11-12 19:37:06 UTC Import patches-unapplied version 1.16.1-1ubuntu1 to ubuntu/disco-proposed Imported using git-ubuntu import. Upload parent: 951d488338b9ee01d4fa111de0226682168aad5a
applied/ubuntu/disco-proposed	2018-11-16 13:08:16 UTC 31 minutes ago	Import patches-applied version 1.16.1-1ubuntu1 to applied/ubuntu/disco-proposed Author: Andreas Hasenack Author Date: 2018-11-12 19:37:06 UTC Import patches-applied version 1.16.1-1ubuntu1 to applied/ubuntu/disco-proposed Imported using git-ubuntu import. Changelog parent: 9f6020939105bdf56ab9cf80d7457b5cca72580c Unapplied parent: f9b28993c62a7c7e3e645ee9afc8596dc2fa2dc0 New changelog entries: * Merge with Debian unstable. * Dropped: - Add DEP8 tests (LP #1677881): + d/t/util: common functions used in the tests + d/t/control, d/t/kinit: simple kinit test + d/t/control, d/t/slapd-gssapi: DEP8 test for service principals [Adopted in 1.16.1-1] * Added: - d/t/util: fix typo
ubuntu/disco-devel	2018-11-16 13:08:16 UTC 31 minutes ago	Import patches-unapplied version 1.16.1-1ubuntu1 to ubuntu/disco-proposed Author: Andreas Hasenack Author Date: 2018-11-12 19:37:06 UTC Import patches-unapplied version 1.16.1-1ubuntu1 to ubuntu/disco-proposed Imported using git-ubuntu import. Upload parent: 951d488338b9ee01d4fa111de0226682168aad5a
ubuntu/devel	2018-11-16 13:08:16 UTC 31 minutes ago	Import patches-unapplied version 1.16.1-1ubuntu1 to ubuntu/disco-proposed Author: Andreas Hasenack Author Date: 2018-11-12 19:37:06 UTC Import patches-unapplied version 1.16.1-1ubuntu1 to ubuntu/disco-proposed Imported using git-ubuntu import. Upload parent: 951d488338b9ee01d4fa111de0226682168aad5a
applied/ubuntu/disco-devel	2018-11-16 13:08:16 UTC 31 minutes ago	Import patches-applied version 1.16.1-1ubuntu1 to applied/ubuntu/disco-proposed Author: Andreas Hasenack Author Date: 2018-11-12 19:37:06 UTC Import patches-applied version 1.16.1-1ubuntu1 to applied/ubuntu/disco-proposed Imported using git-ubuntu import. Changelog parent: 9f6020939105bdf56ab9cf80d7457b5cca72580c Unapplied parent: f9b28993c62a7c7e3e645ee9afc8596dc2fa2dc0 New changelog entries: * Merge with Debian unstable. * Dropped: - Add DEP8 tests (LP #1677881): + d/t/util: common functions used in the tests + d/t/control, d/t/kinit: simple kinit test + d/t/control, d/t/slapd-gssapi: DEP8 test for service principals [Adopted in 1.16.1-1] * Added: - d/t/util: fix typo
applied/ubuntu/devel	2018-11-16 13:08:16 UTC 31 minutes ago	Import patches-applied version 1.16.1-1ubuntu1 to applied/ubuntu/disco-proposed Author: Andreas Hasenack Author Date: 2018-11-12 19:37:06 UTC Import patches-applied version 1.16.1-1ubuntu1 to applied/ubuntu/disco-proposed Imported using git-ubuntu import. Changelog parent: 9f6020939105bdf56ab9cf80d7457b5cca72580c Unapplied parent: f9b28993c62a7c7e3e645ee9afc8596dc2fa2dc0 New changelog entries: * Merge with Debian unstable. * Dropped: - Add DEP8 tests (LP #1677881): + d/t/util: common functions used in the tests + d/t/control, d/t/kinit: simple kinit test + d/t/control, d/t/slapd-gssapi: DEP8 test for service principals [Adopted in 1.16.1-1] * Added: - d/t/util: fix typo
importer/debian/dsc	2018-10-03 22:41:36 UTC 2018-10-03	DSC file for 1.16.1-1 Author: Ubuntu Git Importer Author Date: 2018-10-03 22:41:36 UTC DSC file for 1.16.1-1
debian/buster	2018-10-03 22:36:20 UTC 2018-10-03	Import patches-unapplied version 1.16.1-1 to debian/sid Author: Sam Hartman Author Date: 2018-07-17 00:09:54 UTC Import patches-unapplied version 1.16.1-1 to debian/sid Imported using git-ubuntu import. Changelog parent: 33c956050b3d5dbcb1d400107d0ed093f133b55a New changelog entries: * New upstream release - Fix flaws in LDAP DN checking, including a null dereference KDC crash which could be triggered by kadmin clients with administrative privileges [CVE-2018-5729, CVE-2018-5730], Closes: #891869 * Install kerberos.openldap.ldif, which is probably more useful than kerberos.ldif if you're hoping to use the Kerberos schema on Debian. Also, the bugs in kerberos.ldif have been corrected; Closes: #660767 * Suggest krb5-k5tls from krb5-user, Closes: #887937 * Merge dep8 tests, thanks Canonical and Andreas Hasenack (LP: #1677881)
applied/debian/sid	2018-10-03 22:36:20 UTC 2018-10-03	Import patches-applied version 1.16.1-1 to applied/debian/sid Author: Sam Hartman Author Date: 2018-07-17 00:09:54 UTC Import patches-applied version 1.16.1-1 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: c48b4e05cb6b7e1ed60936f9dd88dbd3467a4ceb Unapplied parent: 247f9097e05af47145121b220560e1f9ba125894 New changelog entries: * New upstream release - Fix flaws in LDAP DN checking, including a null dereference KDC crash which could be triggered by kadmin clients with administrative privileges [CVE-2018-5729, CVE-2018-5730], Closes: #891869 * Install kerberos.openldap.ldif, which is probably more useful than kerberos.ldif if you're hoping to use the Kerberos schema on Debian. Also, the bugs in kerberos.ldif have been corrected; Closes: #660767 * Suggest krb5-k5tls from krb5-user, Closes: #887937 * Merge dep8 tests, thanks Canonical and Andreas Hasenack (LP: #1677881)
debian/sid	2018-10-03 22:36:20 UTC 2018-10-03	Import patches-unapplied version 1.16.1-1 to debian/sid Author: Sam Hartman Author Date: 2018-07-17 00:09:54 UTC Import patches-unapplied version 1.16.1-1 to debian/sid Imported using git-ubuntu import. Changelog parent: 33c956050b3d5dbcb1d400107d0ed093f133b55a New changelog entries: * New upstream release - Fix flaws in LDAP DN checking, including a null dereference KDC crash which could be triggered by kadmin clients with administrative privileges [CVE-2018-5729, CVE-2018-5730], Closes: #891869 * Install kerberos.openldap.ldif, which is probably more useful than kerberos.ldif if you're hoping to use the Kerberos schema on Debian. Also, the bugs in kerberos.ldif have been corrected; Closes: #660767 * Suggest krb5-k5tls from krb5-user, Closes: #887937 * Merge dep8 tests, thanks Canonical and Andreas Hasenack (LP: #1677881)
applied/debian/buster	2018-10-03 22:36:20 UTC 2018-10-03	Import patches-applied version 1.16.1-1 to applied/debian/sid Author: Sam Hartman Author Date: 2018-07-17 00:09:54 UTC Import patches-applied version 1.16.1-1 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: c48b4e05cb6b7e1ed60936f9dd88dbd3467a4ceb Unapplied parent: 247f9097e05af47145121b220560e1f9ba125894 New changelog entries: * New upstream release - Fix flaws in LDAP DN checking, including a null dereference KDC crash which could be triggered by kadmin clients with administrative privileges [CVE-2018-5729, CVE-2018-5730], Closes: #891869 * Install kerberos.openldap.ldif, which is probably more useful than kerberos.ldif if you're hoping to use the Kerberos schema on Debian. Also, the bugs in kerberos.ldif have been corrected; Closes: #660767 * Suggest krb5-k5tls from krb5-user, Closes: #887937 * Merge dep8 tests, thanks Canonical and Andreas Hasenack (LP: #1677881)
applied/ubuntu/cosmic-proposed	2018-08-20 12:43:20 UTC 2018-08-20	Import patches-applied version 1.16-2ubuntu1 to applied/ubuntu/cosmic-proposed Author: Andreas Hasenack Author Date: 2018-07-06 18:39:44 UTC Import patches-applied version 1.16-2ubuntu1 to applied/ubuntu/cosmic-proposed Imported using git-ubuntu import. Changelog parent: 45e6b99014cee93f4d040d29658cfedeaa0a8348 Unapplied parent: ba69a03e2540d8f44673afd7d18bd40456db6c1a New changelog entries: * Add DEP8 tests (LP: #1677881): - d/t/util: common functions used in the tests - d/t/control, d/t/kinit: simple kinit test - d/t/control, d/t/slapd-gssapi: DEP8 test for service principals
ubuntu/disco	2018-08-20 12:43:20 UTC 2018-08-20	Import patches-unapplied version 1.16-2ubuntu1 to ubuntu/cosmic-proposed Author: Andreas Hasenack Author Date: 2018-07-06 18:39:44 UTC Import patches-unapplied version 1.16-2ubuntu1 to ubuntu/cosmic-proposed Imported using git-ubuntu import. Upload parent: 171213f69220df0e4d55dd2f969747533bd62f01
ubuntu/cosmic	2018-08-20 12:43:20 UTC 2018-08-20	Import patches-unapplied version 1.16-2ubuntu1 to ubuntu/cosmic-proposed Author: Andreas Hasenack Author Date: 2018-07-06 18:39:44 UTC Import patches-unapplied version 1.16-2ubuntu1 to ubuntu/cosmic-proposed Imported using git-ubuntu import. Upload parent: 171213f69220df0e4d55dd2f969747533bd62f01
ubuntu/cosmic-devel	2018-08-20 12:43:20 UTC 2018-08-20	Import patches-unapplied version 1.16-2ubuntu1 to ubuntu/cosmic-proposed Author: Andreas Hasenack Author Date: 2018-07-06 18:39:44 UTC Import patches-unapplied version 1.16-2ubuntu1 to ubuntu/cosmic-proposed Imported using git-ubuntu import. Upload parent: 171213f69220df0e4d55dd2f969747533bd62f01
applied/ubuntu/disco	2018-08-20 12:43:20 UTC 2018-08-20	Import patches-applied version 1.16-2ubuntu1 to applied/ubuntu/cosmic-proposed Author: Andreas Hasenack Author Date: 2018-07-06 18:39:44 UTC Import patches-applied version 1.16-2ubuntu1 to applied/ubuntu/cosmic-proposed Imported using git-ubuntu import. Changelog parent: 45e6b99014cee93f4d040d29658cfedeaa0a8348 Unapplied parent: ba69a03e2540d8f44673afd7d18bd40456db6c1a New changelog entries: * Add DEP8 tests (LP: #1677881): - d/t/util: common functions used in the tests - d/t/control, d/t/kinit: simple kinit test - d/t/control, d/t/slapd-gssapi: DEP8 test for service principals
applied/ubuntu/cosmic	2018-08-20 12:43:20 UTC 2018-08-20	Import patches-applied version 1.16-2ubuntu1 to applied/ubuntu/cosmic-proposed Author: Andreas Hasenack Author Date: 2018-07-06 18:39:44 UTC Import patches-applied version 1.16-2ubuntu1 to applied/ubuntu/cosmic-proposed Imported using git-ubuntu import. Changelog parent: 45e6b99014cee93f4d040d29658cfedeaa0a8348 Unapplied parent: ba69a03e2540d8f44673afd7d18bd40456db6c1a New changelog entries: * Add DEP8 tests (LP: #1677881): - d/t/util: common functions used in the tests - d/t/control, d/t/kinit: simple kinit test - d/t/control, d/t/slapd-gssapi: DEP8 test for service principals
applied/ubuntu/cosmic-devel	2018-08-20 12:43:20 UTC 2018-08-20	Import patches-applied version 1.16-2ubuntu1 to applied/ubuntu/cosmic-proposed Author: Andreas Hasenack Author Date: 2018-07-06 18:39:44 UTC Import patches-applied version 1.16-2ubuntu1 to applied/ubuntu/cosmic-proposed Imported using git-ubuntu import. Changelog parent: 45e6b99014cee93f4d040d29658cfedeaa0a8348 Unapplied parent: ba69a03e2540d8f44673afd7d18bd40456db6c1a New changelog entries: * Add DEP8 tests (LP: #1677881): - d/t/util: common functions used in the tests - d/t/control, d/t/kinit: simple kinit test - d/t/control, d/t/slapd-gssapi: DEP8 test for service principals
ubuntu/cosmic-proposed	2018-08-20 12:43:20 UTC 2018-08-20	Import patches-unapplied version 1.16-2ubuntu1 to ubuntu/cosmic-proposed Author: Andreas Hasenack Author Date: 2018-07-06 18:39:44 UTC Import patches-unapplied version 1.16-2ubuntu1 to ubuntu/cosmic-proposed Imported using git-ubuntu import. Upload parent: 171213f69220df0e4d55dd2f969747533bd62f01
importer/ubuntu/pristine-tar	2018-03-09 10:48:46 UTC 2018-03-09	pristine-tar data for krb5_1.16.orig.tar.gz Author: Ubuntu Git Importer Author Date: 2018-03-09 10:48:46 UTC pristine-tar data for krb5_1.16.orig.tar.gz
importer/debian/pristine-tar	2018-03-09 08:25:40 UTC 2018-03-09	pristine-tar data for krb5_1.16.orig.tar.gz Author: Ubuntu Git Importer Author Date: 2018-03-09 08:25:40 UTC pristine-tar data for krb5_1.16.orig.tar.gz
applied/ubuntu/bionic-proposed	2018-02-05 18:04:13 UTC 2018-02-05	Import patches-applied version 1.16-2build1 to applied/ubuntu/bionic-proposed Author: Dimitri John Ledkov Author Date: 2018-02-05 16:50:17 UTC Import patches-applied version 1.16-2build1 to applied/ubuntu/bionic-proposed Imported using git-ubuntu import. Changelog parent: c48b4e05cb6b7e1ed60936f9dd88dbd3467a4ceb Unapplied parent: 6eb36a654c71eab29fc05d72b61888786b8a125b New changelog entries: * No change rebuild against openssl1.1.
applied/ubuntu/bionic-devel	2018-02-05 18:04:13 UTC 2018-02-05	Import patches-applied version 1.16-2build1 to applied/ubuntu/bionic-proposed Author: Dimitri John Ledkov Author Date: 2018-02-05 16:50:17 UTC Import patches-applied version 1.16-2build1 to applied/ubuntu/bionic-proposed Imported using git-ubuntu import. Changelog parent: c48b4e05cb6b7e1ed60936f9dd88dbd3467a4ceb Unapplied parent: 6eb36a654c71eab29fc05d72b61888786b8a125b New changelog entries: * No change rebuild against openssl1.1.
ubuntu/bionic	2018-02-05 18:04:13 UTC 2018-02-05	Import patches-unapplied version 1.16-2build1 to ubuntu/bionic-proposed Author: Dimitri John Ledkov Author Date: 2018-02-05 16:50:17 UTC Import patches-unapplied version 1.16-2build1 to ubuntu/bionic-proposed Imported using git-ubuntu import. Changelog parent: 33c956050b3d5dbcb1d400107d0ed093f133b55a New changelog entries: * No change rebuild against openssl1.1.
ubuntu/bionic-proposed	2018-02-05 18:04:13 UTC 2018-02-05	Import patches-unapplied version 1.16-2build1 to ubuntu/bionic-proposed Author: Dimitri John Ledkov Author Date: 2018-02-05 16:50:17 UTC Import patches-unapplied version 1.16-2build1 to ubuntu/bionic-proposed Imported using git-ubuntu import. Changelog parent: 33c956050b3d5dbcb1d400107d0ed093f133b55a New changelog entries: * No change rebuild against openssl1.1.
applied/ubuntu/bionic	2018-02-05 18:04:13 UTC 2018-02-05	Import patches-applied version 1.16-2build1 to applied/ubuntu/bionic-proposed Author: Dimitri John Ledkov Author Date: 2018-02-05 16:50:17 UTC Import patches-applied version 1.16-2build1 to applied/ubuntu/bionic-proposed Imported using git-ubuntu import. Changelog parent: c48b4e05cb6b7e1ed60936f9dd88dbd3467a4ceb Unapplied parent: 6eb36a654c71eab29fc05d72b61888786b8a125b New changelog entries: * No change rebuild against openssl1.1.
ubuntu/bionic-devel	2018-02-05 18:04:13 UTC 2018-02-05	Import patches-unapplied version 1.16-2build1 to ubuntu/bionic-proposed Author: Dimitri John Ledkov Author Date: 2018-02-05 16:50:17 UTC Import patches-unapplied version 1.16-2build1 to ubuntu/bionic-proposed Imported using git-ubuntu import. Changelog parent: 33c956050b3d5dbcb1d400107d0ed093f133b55a New changelog entries: * No change rebuild against openssl1.1.
debian/jessie	2017-12-09 17:44:39 UTC 2017-12-09	Import patches-unapplied version 1.12.1+dfsg-19+deb8u4 to debian/jessie Author: Sam Hartman Author Date: 2017-08-28 15:55:49 UTC Import patches-unapplied version 1.12.1+dfsg-19+deb8u4 to debian/jessie Imported using git-ubuntu import. Changelog parent: bcb004543217fbcfbf3cc588e367ca3c927b9c39 New changelog entries: * New version number; same code as deb8u3 but rebuilt to build arch all packages and because dgit doesn't deal well with reusing a version number when a package is rejected * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * fix for CVE-2016-3120 (kdc crash on restrict_anon_to_tgt), Closes: #832572 * fix for CVE-2016-3119: remote DOS with ldap for authenticated attackers, Closes: #819468 * Prevent requires_preauth bypass (CVE-2015-2694), Closes: #783557
applied/debian/jessie	2017-12-09 17:44:39 UTC 2017-12-09	Import patches-applied version 1.12.1+dfsg-19+deb8u4 to applied/debian/jessie Author: Sam Hartman Author Date: 2017-08-28 15:55:49 UTC Import patches-applied version 1.12.1+dfsg-19+deb8u4 to applied/debian/jessie Imported using git-ubuntu import. Changelog parent: a6d31c65acbf59f839acc1dfcbed3bdaea37aa60 Unapplied parent: 190a50590756f4d2ff87dbd3c33fd2fa9ceab553 New changelog entries: * New version number; same code as deb8u3 but rebuilt to build arch all packages and because dgit doesn't deal well with reusing a version number when a package is rejected * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * fix for CVE-2016-3120 (kdc crash on restrict_anon_to_tgt), Closes: #832572 * fix for CVE-2016-3119: remote DOS with ldap for authenticated attackers, Closes: #819468 * Prevent requires_preauth bypass (CVE-2015-2694), Closes: #783557
debian/stretch	2017-10-07 11:01:36 UTC 2017-10-07	Import patches-unapplied version 1.15-1+deb9u1 to debian/stretch Author: Sam Hartman Author Date: 2017-08-09 16:19:50 UTC Import patches-unapplied version 1.15-1+deb9u1 to debian/stretch Imported using git-ubuntu import. Changelog parent: c1c9a02ffa08f00a8d7d4ed5b3ab0f597f5a9f0e New changelog entries: * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * Upstream patches to fix startup if getaddrinfo() returns a wildcard v6 address, and to fix handling of explicitly specified v4 wildcard address; regression over previous versions, Closes: #860767 * Fix SRV lookups to respect udp_preference_limit, regression over previous versions with OTP, Closes: #856307
applied/debian/stretch	2017-10-07 11:01:36 UTC 2017-10-07	Import patches-applied version 1.15-1+deb9u1 to applied/debian/stretch Author: Sam Hartman Author Date: 2017-08-09 16:19:50 UTC Import patches-applied version 1.15-1+deb9u1 to applied/debian/stretch Imported using git-ubuntu import. Changelog parent: 48215746fcfa8194bbf92cd353f0d0f1c8cbf4d7 Unapplied parent: aa8c5bad003bc85780c4ebfcf30933e667d7cc69 New changelog entries: * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * Upstream patches to fix startup if getaddrinfo() returns a wildcard v6 address, and to fix handling of explicitly specified v4 wildcard address; regression over previous versions, Closes: #860767 * Fix SRV lookups to respect udp_preference_limit, regression over previous versions with OTP, Closes: #856307
ubuntu/artful	2017-07-23 22:34:47 UTC 2017-07-23	Import patches-unapplied version 1.15.1-2 to debian/sid Author: Sam Hartman Author Date: 2017-07-23 18:16:38 UTC Import patches-unapplied version 1.15.1-2 to debian/sid Imported using git-ubuntu import. Changelog parent: 12c20eb0781a66387370b767aa81188d2a6c9d32 New changelog entries: * Depend on libsasl2-dev for LDAP SASL authentication, Thanks Hideki Yamane, Closes: #868035 * Remove /etc/gss/mech.d/README on libgssapi-krb5-2 purge, Closes: #868121 * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * Set Restart=on-abnormal in krb5-kdc.service and krb5-admind.service to minimize the impact of future DOS bugs.
ubuntu/artful-devel	2017-07-23 22:34:47 UTC 2017-07-23	Import patches-unapplied version 1.15.1-2 to debian/sid Author: Sam Hartman Author Date: 2017-07-23 18:16:38 UTC Import patches-unapplied version 1.15.1-2 to debian/sid Imported using git-ubuntu import. Changelog parent: 12c20eb0781a66387370b767aa81188d2a6c9d32 New changelog entries: * Depend on libsasl2-dev for LDAP SASL authentication, Thanks Hideki Yamane, Closes: #868035 * Remove /etc/gss/mech.d/README on libgssapi-krb5-2 purge, Closes: #868121 * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * Set Restart=on-abnormal in krb5-kdc.service and krb5-admind.service to minimize the impact of future DOS bugs.
ubuntu/artful-proposed	2017-07-23 22:34:47 UTC 2017-07-23	Import patches-unapplied version 1.15.1-2 to debian/sid Author: Sam Hartman Author Date: 2017-07-23 18:16:38 UTC Import patches-unapplied version 1.15.1-2 to debian/sid Imported using git-ubuntu import. Changelog parent: 12c20eb0781a66387370b767aa81188d2a6c9d32 New changelog entries: * Depend on libsasl2-dev for LDAP SASL authentication, Thanks Hideki Yamane, Closes: #868035 * Remove /etc/gss/mech.d/README on libgssapi-krb5-2 purge, Closes: #868121 * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * Set Restart=on-abnormal in krb5-kdc.service and krb5-admind.service to minimize the impact of future DOS bugs.
applied/ubuntu/artful-devel	2017-07-23 22:34:47 UTC 2017-07-23	Import patches-applied version 1.15.1-2 to applied/debian/sid Author: Sam Hartman Author Date: 2017-07-23 18:16:38 UTC Import patches-applied version 1.15.1-2 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: da3e933604d5ac7687b9e591c3e23aa4d839cc35 Unapplied parent: b29809b75b27d593127122dba55b2dcd221656be New changelog entries: * Depend on libsasl2-dev for LDAP SASL authentication, Thanks Hideki Yamane, Closes: #868035 * Remove /etc/gss/mech.d/README on libgssapi-krb5-2 purge, Closes: #868121 * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * Set Restart=on-abnormal in krb5-kdc.service and krb5-admind.service to minimize the impact of future DOS bugs.
applied/ubuntu/artful-proposed	2017-07-23 22:34:47 UTC 2017-07-23	Import patches-applied version 1.15.1-2 to applied/debian/sid Author: Sam Hartman Author Date: 2017-07-23 18:16:38 UTC Import patches-applied version 1.15.1-2 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: da3e933604d5ac7687b9e591c3e23aa4d839cc35 Unapplied parent: b29809b75b27d593127122dba55b2dcd221656be New changelog entries: * Depend on libsasl2-dev for LDAP SASL authentication, Thanks Hideki Yamane, Closes: #868035 * Remove /etc/gss/mech.d/README on libgssapi-krb5-2 purge, Closes: #868121 * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * Set Restart=on-abnormal in krb5-kdc.service and krb5-admind.service to minimize the impact of future DOS bugs.
applied/ubuntu/artful	2017-07-23 22:34:47 UTC 2017-07-23	Import patches-applied version 1.15.1-2 to applied/debian/sid Author: Sam Hartman Author Date: 2017-07-23 18:16:38 UTC Import patches-applied version 1.15.1-2 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: da3e933604d5ac7687b9e591c3e23aa4d839cc35 Unapplied parent: b29809b75b27d593127122dba55b2dcd221656be New changelog entries: * Depend on libsasl2-dev for LDAP SASL authentication, Thanks Hideki Yamane, Closes: #868035 * Remove /etc/gss/mech.d/README on libgssapi-krb5-2 purge, Closes: #868121 * CVE-2017-11368: Remote authenticated attackers can crash the KDC, Closes: #869260 * Set Restart=on-abnormal in krb5-kdc.service and krb5-admind.service to minimize the impact of future DOS bugs.
applied/ubuntu/zesty-updates	2017-05-11 21:23:13 UTC 2017-05-11	Import patches-applied version 1.15-1ubuntu0.1 to applied/ubuntu/zesty-proposed Author: Andreas Hasenack Author Date: 2017-05-05 14:05:38 UTC Import patches-applied version 1.15-1ubuntu0.1 to applied/ubuntu/zesty-proposed Imported using git-ubuntu import. Changelog parent: 48215746fcfa8194bbf92cd353f0d0f1c8cbf4d7 Unapplied parent: 66183de2c818147becc6a4c924680ec3949336ee New changelog entries: * Pulled in Debian fixes from Sam Hartman for: - kinit fails for OTP user when using kdc discovery via DNS (LP: #1683237) - KDC/kadmind explicit wildcard listener addresses do not use pktinfo (LP: #1688121) - KDC/kadmind may fail to start on IPv4-only systems (LP: #1688310)
ubuntu/zesty-devel	2017-05-11 21:23:13 UTC 2017-05-11	Import patches-unapplied version 1.15-1ubuntu0.1 to ubuntu/zesty-proposed Author: Andreas Hasenack Author Date: 2017-05-05 14:05:38 UTC Import patches-unapplied version 1.15-1ubuntu0.1 to ubuntu/zesty-proposed Imported using git-ubuntu import. Changelog parent: c1c9a02ffa08f00a8d7d4ed5b3ab0f597f5a9f0e Upload parent: 26d08c4e6727ce4496f932c6307bde8a006cebdd New changelog entries: * Pulled in Debian fixes from Sam Hartman for: - kinit fails for OTP user when using kdc discovery via DNS (LP: #1683237) - KDC/kadmind explicit wildcard listener addresses do not use pktinfo (LP: #1688121) - KDC/kadmind may fail to start on IPv4-only systems (LP: #1688310)
ubuntu/zesty-proposed	2017-05-11 21:23:13 UTC 2017-05-11	Import patches-unapplied version 1.15-1ubuntu0.1 to ubuntu/zesty-proposed Author: Andreas Hasenack Author Date: 2017-05-05 14:05:38 UTC Import patches-unapplied version 1.15-1ubuntu0.1 to ubuntu/zesty-proposed Imported using git-ubuntu import. Changelog parent: c1c9a02ffa08f00a8d7d4ed5b3ab0f597f5a9f0e Upload parent: 26d08c4e6727ce4496f932c6307bde8a006cebdd New changelog entries: * Pulled in Debian fixes from Sam Hartman for: - kinit fails for OTP user when using kdc discovery via DNS (LP: #1683237) - KDC/kadmind explicit wildcard listener addresses do not use pktinfo (LP: #1688121) - KDC/kadmind may fail to start on IPv4-only systems (LP: #1688310)
applied/ubuntu/zesty-devel	2017-05-11 21:23:13 UTC 2017-05-11	Import patches-applied version 1.15-1ubuntu0.1 to applied/ubuntu/zesty-proposed Author: Andreas Hasenack Author Date: 2017-05-05 14:05:38 UTC Import patches-applied version 1.15-1ubuntu0.1 to applied/ubuntu/zesty-proposed Imported using git-ubuntu import. Changelog parent: 48215746fcfa8194bbf92cd353f0d0f1c8cbf4d7 Unapplied parent: 66183de2c818147becc6a4c924680ec3949336ee New changelog entries: * Pulled in Debian fixes from Sam Hartman for: - kinit fails for OTP user when using kdc discovery via DNS (LP: #1683237) - KDC/kadmind explicit wildcard listener addresses do not use pktinfo (LP: #1688121) - KDC/kadmind may fail to start on IPv4-only systems (LP: #1688310)
ubuntu/zesty-updates	2017-05-11 21:23:13 UTC 2017-05-11	Import patches-unapplied version 1.15-1ubuntu0.1 to ubuntu/zesty-proposed Author: Andreas Hasenack Author Date: 2017-05-05 14:05:38 UTC Import patches-unapplied version 1.15-1ubuntu0.1 to ubuntu/zesty-proposed Imported using git-ubuntu import. Changelog parent: c1c9a02ffa08f00a8d7d4ed5b3ab0f597f5a9f0e Upload parent: 26d08c4e6727ce4496f932c6307bde8a006cebdd New changelog entries: * Pulled in Debian fixes from Sam Hartman for: - kinit fails for OTP user when using kdc discovery via DNS (LP: #1683237) - KDC/kadmind explicit wildcard listener addresses do not use pktinfo (LP: #1688121) - KDC/kadmind may fail to start on IPv4-only systems (LP: #1688310)
applied/ubuntu/zesty-proposed	2017-05-11 21:23:13 UTC 2017-05-11	Import patches-applied version 1.15-1ubuntu0.1 to applied/ubuntu/zesty-proposed Author: Andreas Hasenack Author Date: 2017-05-05 14:05:38 UTC Import patches-applied version 1.15-1ubuntu0.1 to applied/ubuntu/zesty-proposed Imported using git-ubuntu import. Changelog parent: 48215746fcfa8194bbf92cd353f0d0f1c8cbf4d7 Unapplied parent: 66183de2c818147becc6a4c924680ec3949336ee New changelog entries: * Pulled in Debian fixes from Sam Hartman for: - kinit fails for OTP user when using kdc discovery via DNS (LP: #1683237) - KDC/kadmind explicit wildcard listener addresses do not use pktinfo (LP: #1688121) - KDC/kadmind may fail to start on IPv4-only systems (LP: #1688310)
debian/experimental	2017-04-21 10:10:15 UTC 2017-04-21	Import patches-unapplied version 1.15-2 to debian/experimental Author: Sam Hartman Author Date: 2017-04-19 20:50:01 UTC Import patches-unapplied version 1.15-2 to debian/experimental Imported using git-ubuntu import. Changelog parent: c1c9a02ffa08f00a8d7d4ed5b3ab0f597f5a9f0e New changelog entries: * Upstream patches to fix startup if getaddrinfo() returns a wildcard v6 address, and to fix handling of explicitly specified v4 wildcard address; regression over previous versions, Closes: #860767 * Fix SRV lookups to respect udp_preference_limit, regression over previous versions with OTP, Closes: #856307
applied/debian/experimental	2017-04-21 10:10:15 UTC 2017-04-21	Import patches-applied version 1.15-2 to applied/debian/experimental Author: Sam Hartman Author Date: 2017-04-19 20:50:01 UTC Import patches-applied version 1.15-2 to applied/debian/experimental Imported using git-ubuntu import. Changelog parent: 48215746fcfa8194bbf92cd353f0d0f1c8cbf4d7 Unapplied parent: 8a45b3994fa67264cfefa88b020a0ff33035509c New changelog entries: * Upstream patches to fix startup if getaddrinfo() returns a wildcard v6 address, and to fix handling of explicitly specified v4 wildcard address; regression over previous versions, Closes: #860767 * Fix SRV lookups to respect udp_preference_limit, regression over previous versions with OTP, Closes: #856307
applied/ubuntu/xenial-updates	2017-01-23 16:33:24 UTC 2017-01-23	Import patches-applied version 1.13.2+dfsg-5ubuntu2 to applied/ubuntu/xenial-... Author: Eric Desrochers Author Date: 2017-01-16 14:06:57 UTC Import patches-applied version 1.13.2+dfsg-5ubuntu2 to applied/ubuntu/xenial-proposed Imported using git-ubuntu import. Changelog parent: 9c10974e4fae34422d4a068abfc4cbe4b23bb30a Unapplied parent: 0144b4d4c561014c9f6d286b5a8a20daf7385e9e New changelog entries: * Fix segfault in context_handle (LP: #1648901). - d/p/check_internal_context_on_init_context_errors.patch: Cherry picked patch from upstream VCS.
applied/ubuntu/xenial-proposed	2017-01-23 16:33:24 UTC 2017-01-23	Import patches-applied version 1.13.2+dfsg-5ubuntu2 to applied/ubuntu/xenial-... Author: Eric Desrochers Author Date: 2017-01-16 14:06:57 UTC Import patches-applied version 1.13.2+dfsg-5ubuntu2 to applied/ubuntu/xenial-proposed Imported using git-ubuntu import. Changelog parent: 9c10974e4fae34422d4a068abfc4cbe4b23bb30a Unapplied parent: 0144b4d4c561014c9f6d286b5a8a20daf7385e9e New changelog entries: * Fix segfault in context_handle (LP: #1648901). - d/p/check_internal_context_on_init_context_errors.patch: Cherry picked patch from upstream VCS.
ubuntu/xenial-proposed	2017-01-23 16:33:24 UTC 2017-01-23	Import patches-unapplied version 1.13.2+dfsg-5ubuntu2 to ubuntu/xenial-proposed Author: Eric Desrochers Author Date: 2017-01-16 14:06:57 UTC Import patches-unapplied version 1.13.2+dfsg-5ubuntu2 to ubuntu/xenial-proposed Imported using git-ubuntu import. Changelog parent: e3fcbf1fe7c8fb23ac625d24f3015ee328a37b7c New changelog entries: * Fix segfault in context_handle (LP: #1648901). - d/p/check_internal_context_on_init_context_errors.patch: Cherry picked patch from upstream VCS.
applied/ubuntu/xenial-devel	2017-01-23 16:33:24 UTC 2017-01-23	Import patches-applied version 1.13.2+dfsg-5ubuntu2 to applied/ubuntu/xenial-... Author: Eric Desrochers Author Date: 2017-01-16 14:06:57 UTC Import patches-applied version 1.13.2+dfsg-5ubuntu2 to applied/ubuntu/xenial-proposed Imported using git-ubuntu import. Changelog parent: 9c10974e4fae34422d4a068abfc4cbe4b23bb30a Unapplied parent: 0144b4d4c561014c9f6d286b5a8a20daf7385e9e New changelog entries: * Fix segfault in context_handle (LP: #1648901). - d/p/check_internal_context_on_init_context_errors.patch: Cherry picked patch from upstream VCS.
ubuntu/xenial-updates	2017-01-23 16:33:24 UTC 2017-01-23	Import patches-unapplied version 1.13.2+dfsg-5ubuntu2 to ubuntu/xenial-proposed Author: Eric Desrochers Author Date: 2017-01-16 14:06:57 UTC Import patches-unapplied version 1.13.2+dfsg-5ubuntu2 to ubuntu/xenial-proposed Imported using git-ubuntu import. Changelog parent: e3fcbf1fe7c8fb23ac625d24f3015ee328a37b7c New changelog entries: * Fix segfault in context_handle (LP: #1648901). - d/p/check_internal_context_on_init_context_errors.patch: Cherry picked patch from upstream VCS.
ubuntu/xenial-devel	2017-01-23 16:33:24 UTC 2017-01-23	Import patches-unapplied version 1.13.2+dfsg-5ubuntu2 to ubuntu/xenial-proposed Author: Eric Desrochers Author Date: 2017-01-16 14:06:57 UTC Import patches-unapplied version 1.13.2+dfsg-5ubuntu2 to ubuntu/xenial-proposed Imported using git-ubuntu import. Changelog parent: e3fcbf1fe7c8fb23ac625d24f3015ee328a37b7c New changelog entries: * Fix segfault in context_handle (LP: #1648901). - d/p/check_internal_context_on_init_context_errors.patch: Cherry picked patch from upstream VCS.
applied/ubuntu/yakkety-updates	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-applied version 1.14.3+dfsg-2ubuntu1 to applied/ubuntu/yakkety... Author: Steve Langasek Author Date: 2016-11-22 01:01:33 UTC Import patches-applied version 1.14.3+dfsg-2ubuntu1 to applied/ubuntu/yakkety-proposed Imported using git-ubuntu import. Changelog parent: 12c26c1d6273aa057a9049dc00e065bd382d4be7 Unapplied parent: 00fdd201bb6db93ac91fe48542b7df923abd5a4a New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
ubuntu/trusty-proposed	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-unapplied version 1.12+dfsg-2ubuntu5.3 to ubuntu/trusty-proposed Author: Steve Langasek Author Date: 2016-11-22 02:14:47 UTC Import patches-unapplied version 1.12+dfsg-2ubuntu5.3 to ubuntu/trusty-proposed Imported using git-ubuntu import. Changelog parent: 26e46c4b2a21165bf2aed00963799d83d381232b New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
ubuntu/yakkety-updates	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-unapplied version 1.14.3+dfsg-2ubuntu1 to ubuntu/yakkety-proposed Author: Steve Langasek Author Date: 2016-11-22 01:01:33 UTC Import patches-unapplied version 1.14.3+dfsg-2ubuntu1 to ubuntu/yakkety-proposed Imported using git-ubuntu import. Changelog parent: 4a9110524056af47163831a7ed63b6af1e11c51f New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
applied/ubuntu/trusty-proposed	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-applied version 1.12+dfsg-2ubuntu5.3 to applied/ubuntu/trusty-... Author: Steve Langasek Author Date: 2016-11-22 02:14:47 UTC Import patches-applied version 1.12+dfsg-2ubuntu5.3 to applied/ubuntu/trusty-proposed Imported using git-ubuntu import. Changelog parent: cdf0f3e24254abfa0e3c7ba1c35ec2dc21ef3694 Unapplied parent: 2a3e44cb042a21445bf15c76d45fd4dbc86cd73e New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
ubuntu/yakkety-proposed	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-unapplied version 1.14.3+dfsg-2ubuntu1 to ubuntu/yakkety-proposed Author: Steve Langasek Author Date: 2016-11-22 01:01:33 UTC Import patches-unapplied version 1.14.3+dfsg-2ubuntu1 to ubuntu/yakkety-proposed Imported using git-ubuntu import. Changelog parent: 4a9110524056af47163831a7ed63b6af1e11c51f New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
applied/ubuntu/trusty-updates	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-applied version 1.12+dfsg-2ubuntu5.3 to applied/ubuntu/trusty-... Author: Steve Langasek Author Date: 2016-11-22 02:14:47 UTC Import patches-applied version 1.12+dfsg-2ubuntu5.3 to applied/ubuntu/trusty-proposed Imported using git-ubuntu import. Changelog parent: cdf0f3e24254abfa0e3c7ba1c35ec2dc21ef3694 Unapplied parent: 2a3e44cb042a21445bf15c76d45fd4dbc86cd73e New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
ubuntu/trusty-updates	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-unapplied version 1.12+dfsg-2ubuntu5.3 to ubuntu/trusty-proposed Author: Steve Langasek Author Date: 2016-11-22 02:14:47 UTC Import patches-unapplied version 1.12+dfsg-2ubuntu5.3 to ubuntu/trusty-proposed Imported using git-ubuntu import. Changelog parent: 26e46c4b2a21165bf2aed00963799d83d381232b New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
ubuntu/yakkety-devel	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-unapplied version 1.14.3+dfsg-2ubuntu1 to ubuntu/yakkety-proposed Author: Steve Langasek Author Date: 2016-11-22 01:01:33 UTC Import patches-unapplied version 1.14.3+dfsg-2ubuntu1 to ubuntu/yakkety-proposed Imported using git-ubuntu import. Changelog parent: 4a9110524056af47163831a7ed63b6af1e11c51f New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
applied/ubuntu/yakkety-devel	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-applied version 1.14.3+dfsg-2ubuntu1 to applied/ubuntu/yakkety... Author: Steve Langasek Author Date: 2016-11-22 01:01:33 UTC Import patches-applied version 1.14.3+dfsg-2ubuntu1 to applied/ubuntu/yakkety-proposed Imported using git-ubuntu import. Changelog parent: 12c26c1d6273aa057a9049dc00e065bd382d4be7 Unapplied parent: 00fdd201bb6db93ac91fe48542b7df923abd5a4a New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
applied/ubuntu/yakkety-proposed	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-applied version 1.14.3+dfsg-2ubuntu1 to applied/ubuntu/yakkety... Author: Steve Langasek Author Date: 2016-11-22 01:01:33 UTC Import patches-applied version 1.14.3+dfsg-2ubuntu1 to applied/ubuntu/yakkety-proposed Imported using git-ubuntu import. Changelog parent: 12c26c1d6273aa057a9049dc00e065bd382d4be7 Unapplied parent: 00fdd201bb6db93ac91fe48542b7df923abd5a4a New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
applied/ubuntu/trusty-devel	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-applied version 1.12+dfsg-2ubuntu5.3 to applied/ubuntu/trusty-... Author: Steve Langasek Author Date: 2016-11-22 02:14:47 UTC Import patches-applied version 1.12+dfsg-2ubuntu5.3 to applied/ubuntu/trusty-proposed Imported using git-ubuntu import. Changelog parent: cdf0f3e24254abfa0e3c7ba1c35ec2dc21ef3694 Unapplied parent: 2a3e44cb042a21445bf15c76d45fd4dbc86cd73e New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
ubuntu/trusty-devel	2016-12-16 10:23:14 UTC 2016-12-16	Import patches-unapplied version 1.12+dfsg-2ubuntu5.3 to ubuntu/trusty-proposed Author: Steve Langasek Author Date: 2016-11-22 02:14:47 UTC Import patches-unapplied version 1.12+dfsg-2ubuntu5.3 to ubuntu/trusty-proposed Imported using git-ubuntu import. Changelog parent: 26e46c4b2a21165bf2aed00963799d83d381232b New changelog entries: * d/p/upstream/0001-Add-SPNEGO-special-case-for-NTLMSSP-MechListMIC.patch: Cherry-pick from upstream to add SPNEGO special case for NTLMSSP+MechListMIC. LP: #1643708.
applied/ubuntu/zesty	2016-12-05 04:14:18 UTC 2016-12-05	Import patches-applied version 1.15-1 to applied/debian/sid Author: Benjamin Kaduk Author Date: 2016-12-04 20:37:57 UTC Import patches-applied version 1.15-1 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: 7511c7895c97e797aa2c73e6f05da3a5dc10b54a Unapplied parent: d30f62db0043d1e1aea01c8ee319369483e5274a New changelog entries: [ Benjamin Kaduk ] * New upstream version - Make zap() more reliable and use it more consistently; the previous version could be optimized out by gcc 5.1 or later - Update license statement in ccapi/common/win/OldCC/autolock.hxx, Closes: #846088 * Update Debian-HURD-compatibility.patch, Closes: #845381 * Bump debhelper compat level to 9 [ Sam Hartman ] * Actually build and ship German translations, Closes: #842497
ubuntu/zesty	2016-12-05 04:14:18 UTC 2016-12-05	Import patches-unapplied version 1.15-1 to debian/sid Author: Benjamin Kaduk Author Date: 2016-12-04 20:37:57 UTC Import patches-unapplied version 1.15-1 to debian/sid Imported using git-ubuntu import. Changelog parent: 4ae290546d68f7651108d53c981a4491f373742c New changelog entries: [ Benjamin Kaduk ] * New upstream version - Make zap() more reliable and use it more consistently; the previous version could be optimized out by gcc 5.1 or later - Update license statement in ccapi/common/win/OldCC/autolock.hxx, Closes: #846088 * Update Debian-HURD-compatibility.patch, Closes: #845381 * Bump debhelper compat level to 9 [ Sam Hartman ] * Actually build and ship German translations, Closes: #842497
applied/ubuntu/yakkety	2016-09-07 04:15:37 UTC 2016-09-07	Import patches-applied version 1.14.3+dfsg-2 to applied/debian/sid Author: Sam Hartman Author Date: 2016-09-06 01:03:14 UTC Import patches-applied version 1.14.3+dfsg-2 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: 3227d4e80e568badc19c3f750dc7d47e0fa065f1 Unapplied parent: 1be2e48564ca7996debb1c490f1616f189598d16 New changelog entries: * Fix gcc -O3, thanks Ben Kaduk/Steve Langasek, Closes: #833798 * Fix kdb5_util create on 32-bit platforms, thanks Greg Hudson, Closes: #834035
ubuntu/yakkety	2016-09-07 04:15:37 UTC 2016-09-07	Import patches-unapplied version 1.14.3+dfsg-2 to debian/sid Author: Sam Hartman Author Date: 2016-09-06 01:03:14 UTC Import patches-unapplied version 1.14.3+dfsg-2 to debian/sid Imported using git-ubuntu import. Changelog parent: 887980abe92e63b9ad0060f86f44d0b46f426d42 New changelog entries: * Fix gcc -O3, thanks Ben Kaduk/Steve Langasek, Closes: #833798 * Fix kdb5_util create on 32-bit platforms, thanks Greg Hudson, Closes: #834035
debian/wheezy	2016-04-02 23:32:57 UTC 2016-04-02	Import patches-unapplied version 1.10.1+dfsg-5+deb7u7 to debian/wheezy Author: Salvatore Bonaccorso Author Date: 2016-01-31 12:39:43 UTC Import patches-unapplied version 1.10.1+dfsg-5+deb7u7 to debian/wheezy Imported using git-ubuntu import. Changelog parent: 3b556c08fa8a4fb18d3dcc1223813eda375dbefa New changelog entries: * Non-maintainer upload by the Security Team. * Verify decoded kadmin C strings [CVE-2015-8629] CVE-2015-8629: An authenticated attacker can cause kadmind to read beyond the end of allocated memory by sending a string without a terminating zero byte. Information leakage may be possible for an attacker with permission to modify the database. (Closes: #813296) * Fix leaks in kadmin server stubs [CVE-2015-8631] CVE-2015-8631: An authenticated attacker can cause kadmind to leak memory by supplying a null principal name in a request which uses one. Repeating these requests will eventually cause kadmind to exhaust all available memory. (Closes: #813126) * Non-maintainer upload by the Security Team. * Update 0036-Fix-build_principal-memory-bug-CVE-2015-2697.patch. Add check on rlen before doing memcpy. * Non-maintainer upload by the Security Team. * Add missing 0036-Fix-build_principal-memory-bug-CVE-2015-2697.patch. CVE-2015-2697: unsafe string handling in TGS processing. The previous wheezy-security upload mentioned the fix, but did not include the patch in the upload. Thanks to Marc Deslauriers (Closes: #803088) * Import upstream patches for four CVEs: - CVE-2015-2695: SPNEGO context aliasing during establishment, Closes: #803083 - CVE-2015-2696: IAKERB context aliasing during establishment, Closes: #803084 - CVE-2015-2697: unsafe string handling in TGS processing, Closes: #803088 - CVE-2015-2698: regression (memory corruption) in patch for CVE-2015-2696 * In addition to CVE-2015-2698, the upstream patches for CVE-2015-2695 and CVE-2015-2696 introduced regressions preventing the use of gss_import_sec_context() with contexts established using IAKERB or SPNEGO; the fixes for those regressions are included here.
applied/debian/wheezy	2016-04-02 23:32:57 UTC 2016-04-02	Import patches-applied version 1.10.1+dfsg-5+deb7u7 to applied/debian/wheezy Author: Salvatore Bonaccorso Author Date: 2016-01-31 12:39:43 UTC Import patches-applied version 1.10.1+dfsg-5+deb7u7 to applied/debian/wheezy Imported using git-ubuntu import. Changelog parent: 6c384c7a0d01b06b5af9744c098d27e7465b04ab Unapplied parent: ebc6dcf11f71a8a74785c456b7cb15ee4e6063b0 New changelog entries: * Non-maintainer upload by the Security Team. * Verify decoded kadmin C strings [CVE-2015-8629] CVE-2015-8629: An authenticated attacker can cause kadmind to read beyond the end of allocated memory by sending a string without a terminating zero byte. Information leakage may be possible for an attacker with permission to modify the database. (Closes: #813296) * Fix leaks in kadmin server stubs [CVE-2015-8631] CVE-2015-8631: An authenticated attacker can cause kadmind to leak memory by supplying a null principal name in a request which uses one. Repeating these requests will eventually cause kadmind to exhaust all available memory. (Closes: #813126) * Non-maintainer upload by the Security Team. * Update 0036-Fix-build_principal-memory-bug-CVE-2015-2697.patch. Add check on rlen before doing memcpy. * Non-maintainer upload by the Security Team. * Add missing 0036-Fix-build_principal-memory-bug-CVE-2015-2697.patch. CVE-2015-2697: unsafe string handling in TGS processing. The previous wheezy-security upload mentioned the fix, but did not include the patch in the upload. Thanks to Marc Deslauriers (Closes: #803088) * Import upstream patches for four CVEs: - CVE-2015-2695: SPNEGO context aliasing during establishment, Closes: #803083 - CVE-2015-2696: IAKERB context aliasing during establishment, Closes: #803084 - CVE-2015-2697: unsafe string handling in TGS processing, Closes: #803088 - CVE-2015-2698: regression (memory corruption) in patch for CVE-2015-2696 * In addition to CVE-2015-2698, the upstream patches for CVE-2015-2695 and CVE-2015-2696 introduced regressions preventing the use of gss_import_sec_context() with contexts established using IAKERB or SPNEGO; the fixes for those regressions are included here.
applied/ubuntu/xenial	2016-02-23 22:16:43 UTC 2016-02-23	Import patches-applied version 1.13.2+dfsg-5 to applied/debian/sid Author: Sam Hartman Author Date: 2016-02-23 13:54:09 UTC Import patches-applied version 1.13.2+dfsg-5 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: b55454d38d6974bebac7352a2778c3e830399e43 Unapplied parent: 560a8c39a9b0208d2029714aacb4a1593df6bd19 New changelog entries: * Security Update * Verify decoded kadmin C strings [CVE-2015-8629] CVE-2015-8629: An authenticated attacker can cause kadmind to read beyond the end of allocated memory by sending a string without a terminating zero byte. Information leakage may be possible for an attacker with permission to modify the database. (Closes: #813296) * Check for null kadm5 policy name [CVE-2015-8630] CVE-2015-8630: An authenticated attacker with permission to modify a principal entry can cause kadmind to dereference a null pointer by supplying a null policy value but including KADM5_POLICY in the mask. (Closes: #813127) * Fix leaks in kadmin server stubs [CVE-2015-8631] CVE-2015-8631: An authenticated attacker can cause kadmind to leak memory by supplying a null principal name in a request which uses one. Repeating these requests will eventually cause kadmind to exhaust all available memory. (Closes: #813126)
ubuntu/xenial	2016-02-23 22:16:43 UTC 2016-02-23	Import patches-unapplied version 1.13.2+dfsg-5 to debian/sid Author: Sam Hartman Author Date: 2016-02-23 13:54:09 UTC Import patches-unapplied version 1.13.2+dfsg-5 to debian/sid Imported using git-ubuntu import. Changelog parent: 8db3f11cb94b574b6b154cdeb1124b241b115a14 New changelog entries: * Security Update * Verify decoded kadmin C strings [CVE-2015-8629] CVE-2015-8629: An authenticated attacker can cause kadmind to read beyond the end of allocated memory by sending a string without a terminating zero byte. Information leakage may be possible for an attacker with permission to modify the database. (Closes: #813296) * Check for null kadm5 policy name [CVE-2015-8630] CVE-2015-8630: An authenticated attacker with permission to modify a principal entry can cause kadmind to dereference a null pointer by supplying a null policy value but including KADM5_POLICY in the mask. (Closes: #813127) * Fix leaks in kadmin server stubs [CVE-2015-8631] CVE-2015-8631: An authenticated attacker can cause kadmind to leak memory by supplying a null principal name in a request which uses one. Repeating these requests will eventually cause kadmind to exhaust all available memory. (Closes: #813126)
applied/ubuntu/vivid-updates	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.12.1+dfsg-18ubuntu0.1 to applied/ubuntu/vivi... Author: Marc Deslauriers Author Date: 2015-11-11 13:52:46 UTC Import patches-applied version 1.12.1+dfsg-18ubuntu0.1 to applied/ubuntu/vivid-security Imported using git-ubuntu import. Changelog parent: d31b2f316840d7a10f24d6cfa108037a3b7b0c0f Unapplied parent: adc2ca7e5a8fb672b48c6b3a8bfa87be7d749bf9 New changelog entries: * SECURITY UPDATE: preauthentication requirement bypass in kdcpreauth - d/p/u/0031-Prevent-requires_preauth-bypass-CVE-2015-2694.patch: improve logic in src/plugins/preauth/otp/main.c, src/plugins/preauth/pkinit/pkinit_srv.c. - CVE-2015-2694 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0036-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0034-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0035-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/wily-devel	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.13.2+dfsg-2ubuntu0.1 to ubuntu/wily-security Author: Marc Deslauriers Author Date: 2015-11-11 13:36:55 UTC Import patches-unapplied version 1.13.2+dfsg-2ubuntu0.1 to ubuntu/wily-security Imported using git-ubuntu import. Changelog parent: a0b32df26c9252d5b90df456012eaa46c972504d New changelog entries: * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0011-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0016-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0012-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0014-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0013-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0015-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/wily-security	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.13.2+dfsg-2ubuntu0.1 to ubuntu/wily-security Author: Marc Deslauriers Author Date: 2015-11-11 13:36:55 UTC Import patches-unapplied version 1.13.2+dfsg-2ubuntu0.1 to ubuntu/wily-security Imported using git-ubuntu import. Changelog parent: a0b32df26c9252d5b90df456012eaa46c972504d New changelog entries: * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0011-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0016-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0012-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0014-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0013-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0015-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/vivid-devel	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.12.1+dfsg-18ubuntu0.1 to ubuntu/vivid-secu... Author: Marc Deslauriers Author Date: 2015-11-11 13:52:46 UTC Import patches-unapplied version 1.12.1+dfsg-18ubuntu0.1 to ubuntu/vivid-security Imported using git-ubuntu import. Changelog parent: 927b1b9718ac91b4ea0ae8f01a578a4e9b9213e7 New changelog entries: * SECURITY UPDATE: preauthentication requirement bypass in kdcpreauth - d/p/u/0031-Prevent-requires_preauth-bypass-CVE-2015-2694.patch: improve logic in src/plugins/preauth/otp/main.c, src/plugins/preauth/pkinit/pkinit_srv.c. - CVE-2015-2694 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0036-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0034-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0035-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
applied/ubuntu/vivid-devel	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.12.1+dfsg-18ubuntu0.1 to applied/ubuntu/vivi... Author: Marc Deslauriers Author Date: 2015-11-11 13:52:46 UTC Import patches-applied version 1.12.1+dfsg-18ubuntu0.1 to applied/ubuntu/vivid-security Imported using git-ubuntu import. Changelog parent: d31b2f316840d7a10f24d6cfa108037a3b7b0c0f Unapplied parent: adc2ca7e5a8fb672b48c6b3a8bfa87be7d749bf9 New changelog entries: * SECURITY UPDATE: preauthentication requirement bypass in kdcpreauth - d/p/u/0031-Prevent-requires_preauth-bypass-CVE-2015-2694.patch: improve logic in src/plugins/preauth/otp/main.c, src/plugins/preauth/pkinit/pkinit_srv.c. - CVE-2015-2694 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0036-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0034-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0035-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/trusty-security	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.12+dfsg-2ubuntu5.2 to ubuntu/trusty-security Author: Marc Deslauriers Author Date: 2015-11-11 14:08:08 UTC Import patches-unapplied version 1.12+dfsg-2ubuntu5.2 to ubuntu/trusty-security Imported using git-ubuntu import. Changelog parent: c47d8a1a538a3321941abe57118c43456a60da09 New changelog entries: * SECURITY UPDATE: denial of service via incorrect null bytes - d/p/0030-Fix-krb5_read_message-handling-CVE-2014-5355.patch: properly handle null bytes in src/appl/user_user/server.c, src/lib/krb5/krb/recvauth.c. - CVE-2015-5355 * SECURITY UPDATE: preauthentication requirement bypass in kdcpreauth - d/p/0031-Prevent-requires_preauth-bypass-CVE-2015-2694.patch: improve logic in src/plugins/preauth/otp/main.c, src/plugins/preauth/pkinit/pkinit_srv.c. - CVE-2015-2694 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/0036-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/0034-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/0035-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/vivid-security	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.12.1+dfsg-18ubuntu0.1 to ubuntu/vivid-secu... Author: Marc Deslauriers Author Date: 2015-11-11 13:52:46 UTC Import patches-unapplied version 1.12.1+dfsg-18ubuntu0.1 to ubuntu/vivid-security Imported using git-ubuntu import. Changelog parent: 927b1b9718ac91b4ea0ae8f01a578a4e9b9213e7 New changelog entries: * SECURITY UPDATE: preauthentication requirement bypass in kdcpreauth - d/p/u/0031-Prevent-requires_preauth-bypass-CVE-2015-2694.patch: improve logic in src/plugins/preauth/otp/main.c, src/plugins/preauth/pkinit/pkinit_srv.c. - CVE-2015-2694 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0036-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0034-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0035-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/vivid-updates	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.12.1+dfsg-18ubuntu0.1 to ubuntu/vivid-secu... Author: Marc Deslauriers Author Date: 2015-11-11 13:52:46 UTC Import patches-unapplied version 1.12.1+dfsg-18ubuntu0.1 to ubuntu/vivid-security Imported using git-ubuntu import. Changelog parent: 927b1b9718ac91b4ea0ae8f01a578a4e9b9213e7 New changelog entries: * SECURITY UPDATE: preauthentication requirement bypass in kdcpreauth - d/p/u/0031-Prevent-requires_preauth-bypass-CVE-2015-2694.patch: improve logic in src/plugins/preauth/otp/main.c, src/plugins/preauth/pkinit/pkinit_srv.c. - CVE-2015-2694 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0036-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0034-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0035-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
applied/ubuntu/precise-updates	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.10+dfsg~beta1-2ubuntu0.7 to applied/ubuntu/p... Author: Marc Deslauriers Author Date: 2015-11-11 14:16:52 UTC Import patches-applied version 1.10+dfsg~beta1-2ubuntu0.7 to applied/ubuntu/precise-security Imported using git-ubuntu import. Changelog parent: cf66088038288fb764e77f111d12012acce9f096 Unapplied parent: d5e181919d20a43e047bf6fd3fab25b608f0f76d New changelog entries: * SECURITY UPDATE: denial of service via udp ping-pong - debian/patches/CVE-2002-2443.patch: don't respond to improper packets in src/kadmin/server/schpw.c. - CVE-2002-2443 * SECURITY UPDATE: denial of service via incorrect null bytes - d/p/0030-Fix-krb5_read_message-handling-CVE-2014-5355.patch: properly handle null bytes in src/appl/user_user/server.c, src/lib/krb5/krb/recvauth.c. - CVE-2015-5355 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/0035-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/0033-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/0034-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
applied/ubuntu/precise-security	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.10+dfsg~beta1-2ubuntu0.7 to applied/ubuntu/p... Author: Marc Deslauriers Author Date: 2015-11-11 14:16:52 UTC Import patches-applied version 1.10+dfsg~beta1-2ubuntu0.7 to applied/ubuntu/precise-security Imported using git-ubuntu import. Changelog parent: cf66088038288fb764e77f111d12012acce9f096 Unapplied parent: d5e181919d20a43e047bf6fd3fab25b608f0f76d New changelog entries: * SECURITY UPDATE: denial of service via udp ping-pong - debian/patches/CVE-2002-2443.patch: don't respond to improper packets in src/kadmin/server/schpw.c. - CVE-2002-2443 * SECURITY UPDATE: denial of service via incorrect null bytes - d/p/0030-Fix-krb5_read_message-handling-CVE-2014-5355.patch: properly handle null bytes in src/appl/user_user/server.c, src/lib/krb5/krb/recvauth.c. - CVE-2015-5355 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/0035-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/0033-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/0034-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
applied/ubuntu/precise-devel	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.10+dfsg~beta1-2ubuntu0.7 to applied/ubuntu/p... Author: Marc Deslauriers Author Date: 2015-11-11 14:16:52 UTC Import patches-applied version 1.10+dfsg~beta1-2ubuntu0.7 to applied/ubuntu/precise-security Imported using git-ubuntu import. Changelog parent: cf66088038288fb764e77f111d12012acce9f096 Unapplied parent: d5e181919d20a43e047bf6fd3fab25b608f0f76d New changelog entries: * SECURITY UPDATE: denial of service via udp ping-pong - debian/patches/CVE-2002-2443.patch: don't respond to improper packets in src/kadmin/server/schpw.c. - CVE-2002-2443 * SECURITY UPDATE: denial of service via incorrect null bytes - d/p/0030-Fix-krb5_read_message-handling-CVE-2014-5355.patch: properly handle null bytes in src/appl/user_user/server.c, src/lib/krb5/krb/recvauth.c. - CVE-2015-5355 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/0035-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/0033-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/0034-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
applied/ubuntu/wily-devel	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.13.2+dfsg-2ubuntu0.1 to applied/ubuntu/wily-... Author: Marc Deslauriers Author Date: 2015-11-11 13:36:55 UTC Import patches-applied version 1.13.2+dfsg-2ubuntu0.1 to applied/ubuntu/wily-security Imported using git-ubuntu import. Changelog parent: 974d039062b0be810529232db820d20b7e91aa2f Unapplied parent: e8cf16d5944b52ea49665a5961fc3b119cfa3b41 New changelog entries: * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0011-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0016-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0012-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0014-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0013-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0015-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/precise-security	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.10+dfsg~beta1-2ubuntu0.7 to ubuntu/precise... Author: Marc Deslauriers Author Date: 2015-11-11 14:16:52 UTC Import patches-unapplied version 1.10+dfsg~beta1-2ubuntu0.7 to ubuntu/precise-security Imported using git-ubuntu import. Changelog parent: 170cc2ebc5096b87e2ad6d5fbf5afac87b1bf3aa New changelog entries: * SECURITY UPDATE: denial of service via udp ping-pong - debian/patches/CVE-2002-2443.patch: don't respond to improper packets in src/kadmin/server/schpw.c. - CVE-2002-2443 * SECURITY UPDATE: denial of service via incorrect null bytes - d/p/0030-Fix-krb5_read_message-handling-CVE-2014-5355.patch: properly handle null bytes in src/appl/user_user/server.c, src/lib/krb5/krb/recvauth.c. - CVE-2015-5355 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/0035-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/0033-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/0034-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/precise-devel	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.10+dfsg~beta1-2ubuntu0.7 to ubuntu/precise... Author: Marc Deslauriers Author Date: 2015-11-11 14:16:52 UTC Import patches-unapplied version 1.10+dfsg~beta1-2ubuntu0.7 to ubuntu/precise-security Imported using git-ubuntu import. Changelog parent: 170cc2ebc5096b87e2ad6d5fbf5afac87b1bf3aa New changelog entries: * SECURITY UPDATE: denial of service via udp ping-pong - debian/patches/CVE-2002-2443.patch: don't respond to improper packets in src/kadmin/server/schpw.c. - CVE-2002-2443 * SECURITY UPDATE: denial of service via incorrect null bytes - d/p/0030-Fix-krb5_read_message-handling-CVE-2014-5355.patch: properly handle null bytes in src/appl/user_user/server.c, src/lib/krb5/krb/recvauth.c. - CVE-2015-5355 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/0035-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/0033-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/0034-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/wily-updates	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.13.2+dfsg-2ubuntu0.1 to ubuntu/wily-security Author: Marc Deslauriers Author Date: 2015-11-11 13:36:55 UTC Import patches-unapplied version 1.13.2+dfsg-2ubuntu0.1 to ubuntu/wily-security Imported using git-ubuntu import. Changelog parent: a0b32df26c9252d5b90df456012eaa46c972504d New changelog entries: * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0011-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0016-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0012-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0014-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0013-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0015-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
applied/ubuntu/wily-security	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.13.2+dfsg-2ubuntu0.1 to applied/ubuntu/wily-... Author: Marc Deslauriers Author Date: 2015-11-11 13:36:55 UTC Import patches-applied version 1.13.2+dfsg-2ubuntu0.1 to applied/ubuntu/wily-security Imported using git-ubuntu import. Changelog parent: 974d039062b0be810529232db820d20b7e91aa2f Unapplied parent: e8cf16d5944b52ea49665a5961fc3b119cfa3b41 New changelog entries: * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0011-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0016-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0012-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0014-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0013-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0015-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
applied/ubuntu/vivid-security	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.12.1+dfsg-18ubuntu0.1 to applied/ubuntu/vivi... Author: Marc Deslauriers Author Date: 2015-11-11 13:52:46 UTC Import patches-applied version 1.12.1+dfsg-18ubuntu0.1 to applied/ubuntu/vivid-security Imported using git-ubuntu import. Changelog parent: d31b2f316840d7a10f24d6cfa108037a3b7b0c0f Unapplied parent: adc2ca7e5a8fb672b48c6b3a8bfa87be7d749bf9 New changelog entries: * SECURITY UPDATE: preauthentication requirement bypass in kdcpreauth - d/p/u/0031-Prevent-requires_preauth-bypass-CVE-2015-2694.patch: improve logic in src/plugins/preauth/otp/main.c, src/plugins/preauth/pkinit/pkinit_srv.c. - CVE-2015-2694 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0036-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0034-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0035-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
applied/ubuntu/wily-updates	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.13.2+dfsg-2ubuntu0.1 to applied/ubuntu/wily-... Author: Marc Deslauriers Author Date: 2015-11-11 13:36:55 UTC Import patches-applied version 1.13.2+dfsg-2ubuntu0.1 to applied/ubuntu/wily-security Imported using git-ubuntu import. Changelog parent: 974d039062b0be810529232db820d20b7e91aa2f Unapplied parent: e8cf16d5944b52ea49665a5961fc3b119cfa3b41 New changelog entries: * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/u/0011-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/u/0016-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/u/0012-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/u/0014-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/u/0013-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/u/0015-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/precise-updates	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-unapplied version 1.10+dfsg~beta1-2ubuntu0.7 to ubuntu/precise... Author: Marc Deslauriers Author Date: 2015-11-11 14:16:52 UTC Import patches-unapplied version 1.10+dfsg~beta1-2ubuntu0.7 to ubuntu/precise-security Imported using git-ubuntu import. Changelog parent: 170cc2ebc5096b87e2ad6d5fbf5afac87b1bf3aa New changelog entries: * SECURITY UPDATE: denial of service via udp ping-pong - debian/patches/CVE-2002-2443.patch: don't respond to improper packets in src/kadmin/server/schpw.c. - CVE-2002-2443 * SECURITY UPDATE: denial of service via incorrect null bytes - d/p/0030-Fix-krb5_read_message-handling-CVE-2014-5355.patch: properly handle null bytes in src/appl/user_user/server.c, src/lib/krb5/krb/recvauth.c. - CVE-2015-5355 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/0035-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/0033-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/0034-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
applied/ubuntu/trusty-security	2015-11-12 17:44:14 UTC 2015-11-12	Import patches-applied version 1.12+dfsg-2ubuntu5.2 to applied/ubuntu/trusty-... Author: Marc Deslauriers Author Date: 2015-11-11 14:08:08 UTC Import patches-applied version 1.12+dfsg-2ubuntu5.2 to applied/ubuntu/trusty-security Imported using git-ubuntu import. Changelog parent: 5d0f087b35e9ff95f3158e4adaf5b73a299aa18c Unapplied parent: ee57b6b9f820041c877735292d558de96335cf67 New changelog entries: * SECURITY UPDATE: denial of service via incorrect null bytes - d/p/0030-Fix-krb5_read_message-handling-CVE-2014-5355.patch: properly handle null bytes in src/appl/user_user/server.c, src/lib/krb5/krb/recvauth.c. - CVE-2015-5355 * SECURITY UPDATE: preauthentication requirement bypass in kdcpreauth - d/p/0031-Prevent-requires_preauth-bypass-CVE-2015-2694.patch: improve logic in src/plugins/preauth/otp/main.c, src/plugins/preauth/pkinit/pkinit_srv.c. - CVE-2015-2694 * SECURITY UPDATE: SPNEGO context aliasing bugs - d/p/0031-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch: improve logic in src/lib/gssapi/spnego/gssapiP_spnego.h, src/lib/gssapi/spnego/spnego_mech.c. - d/p/0036-Fix-SPNEGO-context-import.patch: fix SPNEGO context import in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2015-2695 * SECURITY UPDATE: IAKERB context aliasing bugs - d/p/0032-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch: improve logic in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - d/p/0034-Fix-two-IAKERB-comments.patch: fix comments in src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2696 * SECURITY UPDATE: KDC crash via invalid string processing - d/p/0033-Fix-build_principal-memory-bug-CVE-2015-2697.patch: use k5memdup0() instead of strdup() in src/lib/krb5/krb/bld_princ.c. - CVE-2015-2697 * SECURITY UPDATE: memory corruption in IAKERB context export/import - d/p/0035-Fix-IAKERB-context-export-import-CVE-2015-2698.patch: dereferencing the context_handle pointer before casting it in and implement implement an IAKERB gss_import_sec_context() function in src/lib/gssapi/krb5/gssapiP_krb5.h, src/lib/gssapi/krb5/gssapi_krb5.c, src/lib/gssapi/krb5/iakerb.c. - CVE-2015-2698
ubuntu/wily-proposed	2015-06-26 04:12:09 UTC 2015-06-26	Import patches-unapplied version 1.13.2+dfsg-2 to debian/sid Author: Benjamin Kaduk Author Date: 2015-06-25 21:10:03 UTC Import patches-unapplied version 1.13.2+dfsg-2 to debian/sid Imported using git-ubuntu import. Changelog parent: e80c89f98fc30ee25ab8f3a1fbd0c122c0a92205 New changelog entries: * No-change rebuild to target unstable
applied/ubuntu/wily	2015-06-26 04:12:09 UTC 2015-06-26	Import patches-applied version 1.13.2+dfsg-2 to applied/debian/sid Author: Benjamin Kaduk Author Date: 2015-06-25 21:10:03 UTC Import patches-applied version 1.13.2+dfsg-2 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: 19d0ca2da11f97745b2d5f53bfa1a31af633ea27 Unapplied parent: fb1b0e02307e9cff8ed600d9ed6e9f89589fdab5 New changelog entries: * No-change rebuild to target unstable
applied/ubuntu/wily-proposed	2015-06-26 04:12:09 UTC 2015-06-26	Import patches-applied version 1.13.2+dfsg-2 to applied/debian/sid Author: Benjamin Kaduk Author Date: 2015-06-25 21:10:03 UTC Import patches-applied version 1.13.2+dfsg-2 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: 19d0ca2da11f97745b2d5f53bfa1a31af633ea27 Unapplied parent: fb1b0e02307e9cff8ed600d9ed6e9f89589fdab5 New changelog entries: * No-change rebuild to target unstable
ubuntu/wily	2015-06-26 04:12:09 UTC 2015-06-26	Import patches-unapplied version 1.13.2+dfsg-2 to debian/sid Author: Benjamin Kaduk Author Date: 2015-06-25 21:10:03 UTC Import patches-unapplied version 1.13.2+dfsg-2 to debian/sid Imported using git-ubuntu import. Changelog parent: e80c89f98fc30ee25ab8f3a1fbd0c122c0a92205 New changelog entries: * No-change rebuild to target unstable
ubuntu/vivid	2015-02-18 22:13:03 UTC 2015-02-18	Import patches-unapplied version 1.12.1+dfsg-18 to debian/sid Author: Benjamin Kaduk Author Date: 2015-02-18 17:52:14 UTC Import patches-unapplied version 1.12.1+dfsg-18 to debian/sid Imported using git-ubuntu import. Changelog parent: 577e4dcebb04f1dce260d223fcab699f2586706c New changelog entries: * Import upstream patch for CVE-2014-5355, Closes: #778647
ubuntu/vivid-proposed	2015-02-18 22:13:03 UTC 2015-02-18	Import patches-unapplied version 1.12.1+dfsg-18 to debian/sid Author: Benjamin Kaduk Author Date: 2015-02-18 17:52:14 UTC Import patches-unapplied version 1.12.1+dfsg-18 to debian/sid Imported using git-ubuntu import. Changelog parent: 577e4dcebb04f1dce260d223fcab699f2586706c New changelog entries: * Import upstream patch for CVE-2014-5355, Closes: #778647
applied/ubuntu/vivid	2015-02-18 22:13:03 UTC 2015-02-18	Import patches-applied version 1.12.1+dfsg-18 to applied/debian/sid Author: Benjamin Kaduk Author Date: 2015-02-18 17:52:14 UTC Import patches-applied version 1.12.1+dfsg-18 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: 8a29c92e2dd8b4723ccd213b01035550a4af8777 Unapplied parent: d0f7dc592547f3ffaa609899af9e259a18b6f673 New changelog entries: * Import upstream patch for CVE-2014-5355, Closes: #778647
applied/ubuntu/vivid-proposed	2015-02-18 22:13:03 UTC 2015-02-18	Import patches-applied version 1.12.1+dfsg-18 to applied/debian/sid Author: Benjamin Kaduk Author Date: 2015-02-18 17:52:14 UTC Import patches-applied version 1.12.1+dfsg-18 to applied/debian/sid Imported using git-ubuntu import. Changelog parent: 8a29c92e2dd8b4723ccd213b01035550a4af8777 Unapplied parent: d0f7dc592547f3ffaa609899af9e259a18b6f673 New changelog entries: * Import upstream patch for CVE-2014-5355, Closes: #778647

Other repositories

Name	Last Modified
lp:ubuntu/+source/krb5	14 minutes ago
lp:~ahasenack/ubuntu/+source/krb5	2018-11-12

You can't create new repositories for krb5 in Ubuntu.