krb5 1.13.2+dfsg-5 source package in Ubuntu
Changelog
krb5 (1.13.2+dfsg-5) unstable; urgency=high * Security Update * Verify decoded kadmin C strings [CVE-2015-8629] CVE-2015-8629: An authenticated attacker can cause kadmind to read beyond the end of allocated memory by sending a string without a terminating zero byte. Information leakage may be possible for an attacker with permission to modify the database. (Closes: #813296) * Check for null kadm5 policy name [CVE-2015-8630] CVE-2015-8630: An authenticated attacker with permission to modify a principal entry can cause kadmind to dereference a null pointer by supplying a null policy value but including KADM5_POLICY in the mask. (Closes: #813127) * Fix leaks in kadmin server stubs [CVE-2015-8631] CVE-2015-8631: An authenticated attacker can cause kadmind to leak memory by supplying a null principal name in a request which uses one. Repeating these requests will eventually cause kadmind to exhaust all available memory. (Closes: #813126) -- Sam Hartman <email address hidden> Tue, 23 Feb 2016 08:54:09 -0500
Upload details
- Uploaded by:
- Sam Hartman
- Uploaded to:
- Sid
- Original maintainer:
- Sam Hartman
- Architectures:
- any all
- Section:
- net
- Urgency:
- Very Urgent
See full publishing history Publishing
Series | Published | Component | Section | |
---|---|---|---|---|
Xenial | release | main | net |
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
krb5_1.13.2+dfsg-5.dsc | 3.1 KiB | b52caa3fd7211250987f2f0319579992a7f2bc24c47c766fdfc0403945dbfbdb |
krb5_1.13.2+dfsg.orig.tar.gz | 11.3 MiB | a7af3953e4ab52b17f80bdfc2fc7471b66b512b128520796e2b993554543873a |
krb5_1.13.2+dfsg-5.debian.tar.xz | 99.6 KiB | 8f8c951a524af50b300f524cd14bd946ea802e81eddbc719f9b71719158b9c1d |
Available diffs
- diff from 1.13.2+dfsg-4 to 1.13.2+dfsg-5 (4.3 KiB)
No changes file available.
Binary packages built by this source
- krb5-admin-server: MIT Kerberos master server (kadmind)
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the Kerberos master server (kadmind), which handles
account creations and deletions, password changes, and other
administrative commands via the Kerberos admin protocol. It also
contains the command used by the master KDC to propagate its database to
slave KDCs. This package is generally only used on the master KDC for a
Kerberos realm.
- krb5-admin-server-dbgsym: debug symbols for package krb5-admin-server
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the Kerberos master server (kadmind), which handles
account creations and deletions, password changes, and other
administrative commands via the Kerberos admin protocol. It also
contains the command used by the master KDC to propagate its database to
slave KDCs. This package is generally only used on the master KDC for a
Kerberos realm.
- krb5-doc: No summary available for krb5-doc in ubuntu yakkety.
No description available for krb5-doc in ubuntu yakkety.
- krb5-gss-samples: MIT Kerberos GSS Sample applications
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains bgss-sample and gss-server, programs used to
test GSS-API mechanisms. These programs are most commonly used in
testing newly developed GSS-API mechanisms or in testing events
between Kerberos or GSS implementations.
- krb5-gss-samples-dbgsym: debug symbols for package krb5-gss-samples
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains bgss-sample and gss-server, programs used to
test GSS-API mechanisms. These programs are most commonly used in
testing newly developed GSS-API mechanisms or in testing events
between Kerberos or GSS implementations.
- krb5-k5tls: No summary available for krb5-k5tls in ubuntu yakkety.
No description available for krb5-k5tls in ubuntu yakkety.
- krb5-k5tls-dbgsym: debug symbols for package krb5-k5tls
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains a plugin for the TLS functionality used by optional
functionality in MIT Kerberos. The only current consumer is client support
for the MS-KKDCP protocol, which tunnels Kerberos protocol traffic through
an HTTPS proxy.
- krb5-kdc: No summary available for krb5-kdc in ubuntu yakkety.
No description available for krb5-kdc in ubuntu yakkety.
- krb5-kdc-dbgsym: debug symbols for package krb5-kdc
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the Kerberos key server (KDC). The KDC manages all
authentication credentials for a Kerberos realm, holds the master keys
for the realm, and responds to authentication requests. This package
should be installed on both master and slave KDCs.
- krb5-kdc-ldap: MIT Kerberos key server (KDC) LDAP plugin
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the LDAP plugin for the Kerberos key server (KDC)
and supporting utilities. This plugin allows the KDC data to be stored
in an LDAP server rather than the default local database. It should be
installed on both master and slave KDCs that use LDAP as a storage
backend.
- krb5-kdc-ldap-dbgsym: No summary available for krb5-kdc-ldap-dbgsym in ubuntu yakkety.
No description available for krb5-kdc-
ldap-dbgsym in ubuntu yakkety.
- krb5-locales: Internationalization support for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains internationalized messages for MIT Kerberos.
- krb5-multidev: Development files for MIT Kerberos without Heimdal conflict
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
Most users wishing to build applications against MIT Kerberos should
install libkrb5-dev. However, that package conflicts with heimdal-dev.
This package installs libraries and headers in /usr/include/mit-krb5 and
/usr/lib/mit-krb5 and can be installed along side heimdal-multidev, which
provides the same facilities for Heimdal.
- krb5-multidev-dbgsym: debug symbols for package krb5-multidev
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
Most users wishing to build applications against MIT Kerberos should
install libkrb5-dev. However, that package conflicts with heimdal-dev.
This package installs libraries and headers in /usr/include/mit-krb5 and
/usr/lib/mit-krb5 and can be installed along side heimdal-multidev, which
provides the same facilities for Heimdal.
- krb5-otp: No summary available for krb5-otp in ubuntu yakkety.
No description available for krb5-otp in ubuntu yakkety.
- krb5-otp-dbgsym: debug symbols for package krb5-otp
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains a plugin for the OTP preauthentication method
(RFC 6560), which allows Kerberos tickets to be obtained using
One-Time Password authentication. This plugin is for use on the KDC; the
client support is built in to libkrb5.
- krb5-pkinit: PKINIT plugin for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains a plugin for the PKINIT protocol, which allows
Kerberos tickets to be obtained using public-key credentials such as
X.509 certificates or a smart card. This plugin can be used by the
client libraries and the KDC.
- krb5-pkinit-dbgsym: debug symbols for package krb5-pkinit
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains a plugin for the PKINIT protocol, which allows
Kerberos tickets to be obtained using public-key credentials such as
X.509 certificates or a smart card. This plugin can be used by the
client libraries and the KDC.
- krb5-user: Basic programs to authenticate using MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the basic programs to authenticate to MIT Kerberos,
change passwords, and talk to the admin server (to create and delete
principals, list principals, etc.).
- krb5-user-dbgsym: debug symbols for package krb5-user
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the basic programs to authenticate to MIT Kerberos,
change passwords, and talk to the admin server (to create and delete
principals, list principals, etc.).
- libgssapi-krb5-2: MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library for the MIT Kerberos
implementation of GSS-API used by applications and Kerberos clients.
- libgssapi-krb5-2-dbgsym: debug symbols for package libgssapi-krb5-2
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library for the MIT Kerberos
implementation of GSS-API used by applications and Kerberos clients.
- libgssrpc4: No summary available for libgssrpc4 in ubuntu yakkety.
No description available for libgssrpc4 in ubuntu yakkety.
- libgssrpc4-dbgsym: debug symbols for package libgssrpc4
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains an RPC library used by the Kerberos administrative
programs and potentially other applications.
- libk5crypto3: No summary available for libk5crypto3 in ubuntu yakkety.
No description available for libk5crypto3 in ubuntu yakkety.
- libk5crypto3-dbgsym: debug symbols for package libk5crypto3
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime cryptography libraries used by
applications and Kerberos clients.
- libkadm5clnt-mit9: MIT Kerberos runtime libraries - Administration Clients
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library used by clients of the Kerberos
administration protocol.
- libkadm5clnt-mit9-dbgsym: No summary available for libkadm5clnt-mit9-dbgsym in ubuntu yakkety.
No description available for libkadm5clnt-
mit9-dbgsym in ubuntu yakkety.
- libkadm5srv-mit9: MIT Kerberos runtime libraries - KDC and Admin Server
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library used by Kerberos administrative
servers.
- libkadm5srv-mit9-dbgsym: debug symbols for package libkadm5srv-mit9
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library used by Kerberos administrative
servers.
- libkdb5-8: MIT Kerberos runtime libraries - Kerberos database
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the internal Kerberos database libraries.
- libkdb5-8-dbgsym: No summary available for libkdb5-8-dbgsym in ubuntu yakkety.
No description available for libkdb5-8-dbgsym in ubuntu yakkety.
- libkrad-dev: No summary available for libkrad-dev in ubuntu yakkety.
No description available for libkrad-dev in ubuntu yakkety.
- libkrad-dev-dbgsym: No summary available for libkrad-dev-dbgsym in ubuntu yakkety.
No description available for libkrad-dev-dbgsym in ubuntu yakkety.
- libkrad0: MIT Kerberos runtime libraries - RADIUS library
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the internal support library for RADIUS functionality.
- libkrad0-dbgsym: debug symbols for package libkrad0
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the internal support library for RADIUS functionality.
- libkrb5-3: MIT Kerberos runtime libraries
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library for the main Kerberos v5 API
used by applications and Kerberos clients.
- libkrb5-3-dbgsym: debug symbols for package libkrb5-3
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library for the main Kerberos v5 API
used by applications and Kerberos clients.
- libkrb5-dbg: Debugging files for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the debugging information for the MIT Kerberos
libraries. Install this package if you need to trace problems inside the
MIT Kerberos libraries with a debugger.
- libkrb5-dev: No summary available for libkrb5-dev in ubuntu yakkety.
No description available for libkrb5-dev in ubuntu yakkety.
- libkrb5-dev-dbgsym: debug symbols for package libkrb5-dev
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the symlinks, headers, and development libraries
needed to compile and link programs that use the Kerberos libraries.
- libkrb5support0: MIT Kerberos runtime libraries - Support library
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains an internal runtime support library used by other
Kerberos libraries.
- libkrb5support0-dbgsym: debug symbols for package libkrb5support0
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains an internal runtime support library used by other
Kerberos libraries.