Ubuntu
krb5 package

lp:ubuntu/jaunty-updates/krb5

Jaunty (9.04)
jaunty-updates

Created by James Westby on 2010-01-13 and last modified on 2010-05-18

Get this branch:: bzr branch lp:ubuntu/jaunty-updates/krb5

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Mature

Recent revisions

18. By Kees Cook on 2010-05-18

* SECURITY UPDATE: unauthenticated remote attacker can crash kadmind.
- debian/patches/MITKRB5-SA-2010-005: applied upstream fixes inline
- CVE-2010-1321

17. By Kees Cook on 2010-04-06

* SECURITY UPDATE: unauthenticated remote KDC service crash.
  - debian/patches/MITKRB5-SA-2010-003 applied inline.
* SECURITY UPDATE: potential service crashes.
  - debian/patches/likewise-krb5-gssapi: fixed to not re-introduce
    CVE-2007-5901 and CVE-2007-5971.

16. By Kees Cook on 2010-01-11

* SECURITY UPDATE: unauthenticated remote attacker can crash or
  compromise the KDC via flaws in AES and RC4 decryption (CVE-2009-4212).
  - debian/patches/MITKRB5-SA-2009-004 applied inline.
  - http://web.mit.edu/kerberos/advisories/2009-004-patch_1.6.3.txt

15. By Kees Cook on 2009-04-07

* SECURITY UPDATE: denial of service via buffer overflows.
  - src/lib/gssapi/spnego/spnego_mech.c, src/lib/krb5/asn.1/asn1buf.c:
    GSS-API could be crashed remotely (MITKRB5-SA-2009-001: CVE-2009-0844,
    CVE-2009-0845, CVE-2009-0847).
  - src/lib/krb5/asn.1/asn1_decode.c: ASN.1 decoder freed uninitialized
    pointers (MITKRB5-SA-2009-002: CVE-2009-0846).

14. By Mathias Gug on 2009-02-18

debian/patches/likewise-krb5-gssapi: add likewise-open patch to support
Microsoft kerberos implementation.

13. By Russ Allbery on 2008-12-29

* Correct the actions of krb5_newrealm in its man page. It doesn't
  create a keytab for kadmind since kadmind no longer needs one.
  Mention that it does create a stash file and that it starts the KDC
  and kadmind daemons. Thanks, David Medberry. (Closes: #504126)
* Translation updates:
  - Spanish, thanks Ignacio Mondino. (Closes: #504766)

12. By Sam Hartman on 2008-08-21

[ Russ Allbery ]
* Translation updates:
- Swedish, thanks Martin Bagge. (Closes: #487669, #491774)
- Italian, thanks Luca Monducci. (Closes: #493962)

[ Sam Hartman ]
* Translation Updates:
- Dutch, Thanks Vincent Zweije, Closes: #495733

11. By Russ Allbery on 2006-11-05

* Remove the check for pthread_mutexattr_setrobust_np in the thread
  initialization code. This was only needed on Solaris 9 and has been
  removed upstream, and was causing FTBFS with glibc 2.5. Thanks,
  Martin Pitt. (Closes: #396166)
* Translation updates:
  - New Romanian translation, thanks stan ioan-eugen. (Closes: #395347)

10. By Martin Pitt on 2006-10-30

* Merge with Debian; only Ubuntu change:
- src/include/k5-thread.h: Define__USE_GNU when #include'ing pthread.h to
fix FTBFS (from 1.4.3-9ubuntu1).

9. By Martin Pitt on 2006-09-20

src/include/k5-thread.h: Define__USE_GNU when #include'ing pthread.h so
that src/util/support/threads.c has pthread_mutexattr_setrobust_np()
available. Fixes FTBFS.

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/lucid/krb5

This branch contains Public information

Everyone can see this information.

Subscribers

James Westby

Ubuntukrb5 package