Pulled in Debian fixes from Sam Hartman for:
- kinit fails for OTP user when using kdc discovery via DNS
(LP: #1683237)
- KDC/kadmind explicit wildcard listener addresses do not use pktinfo
(LP: #1688121)
- KDC/kadmind may fail to start on IPv4-only systems (LP: #1688310)
84b48db...
by
Benjamin Kaduk <email address hidden>
Import patches-unapplied version 1.15-1 to ubuntu/zesty-proposed
New changelog entries:
[ Benjamin Kaduk ]
* New upstream version
- Make zap() more reliable and use it more consistently; the
previous version could be optimized out by gcc 5.1 or later
- Update license statement in ccapi/common/win/OldCC/autolock.hxx,
Closes: #846088
* Update Debian-HURD-compatibility.patch, Closes: #845381
* Bump debhelper compat level to 9
[ Sam Hartman ]
* Actually build and ship German translations, Closes: #842497
2a013e1...
by
Benjamin Kaduk <email address hidden>
Import patches-unapplied version 1.15~beta1-1 to ubuntu/zesty-proposed
New changelog entries:
[ Benjamin Kaduk ]
* New upstream version
- Upstream's tarball is now DFSG-free
- Builds against openssl 1.1.0, Closes: #828369
- Add support for the AES-SHA2 enctypes
- Add support to kadmin for remote extraction of current keys
and principal attributes to prevent such extraction
- Add DNS auto-discovery using URI records in addition to SRV records
- Improve LDAP backend to contain some features previously only
present in the BDB backend
- Use the getrandom system call on supported Linux kernels
- Use SHA256 instead of MD5 for hashing authenticators in the replay cache
* The symbol gssrpc_svcauth_gss_creds was removed upstream from
libgssrpc; no soname bump because this is an internal API never in a
public header
[ Sam Hartman ]
* Update standards version to 3.9.8