Created by James Westby and last modified
Get this branch:
bzr branch lp:ubuntu/maverick/krb5
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Ubuntu branches
Review team:
Ubuntu Development Team

Recent revisions

28. By Sam Hartman

* Ignore duplicate token sent in mechListMIC from Windows 2000 SPNEGO
  (LP: #551901)
* krb5-admin-server starts after krb5-kdc, Closes: #583494

27. By Sam Hartman

* CVE-2010-1321 GSS-API accept sec context null pointer deref, Closes:
* Force use of bash for build, Closes: #581473
* Start slapd before krb5 when krb5-kdc-ldap installed, Closes:

26. By Sam Hartman

Fix crash in renewal and validation, Thanks Joel Johnson for such a
prompt bug report, Closes: #577490

25. By Kees Cook

* SECURITY UPDATE: unauthenticated remote service crash.
  - src/lib/gssapi/spnego/spnego_mech.c: back-ported upstream fixes
    from krb5 1.8.1.
  - MITKRB5-SA-2010-002 (CVE-2010-0628)

24. By Russ Allbery

* MITKRB5-SA-2010-001: Avoid an assertion failure leading to a denial of
  service in the KDC by doing better input validation. (CVE-2010-0283)
* Update standards version to 3.8.4 (no changes required).

23. By Sam Hartman

[ Sam Hartman ]
* New API to allow an application to enable weak crypto
* Rename libkadm5clnt and libkadm5srv to libkadm5clnt_mit and
  libkadm5srv_mit in order to avoid conflicts with Heimdal packages.
  Sorry for the second trip through new, but we needed to coordinate
  with upstream on the ABI issues involved with this change.
* Medium urgency in order to get a fix for openafs-krb5 weak crypto into
  testing sooner
* Include fix for pam-krb5 segfault with wrong password; bump urgency to

[ Russ Allbery ]
* Change libkrb5-dbg to only depend on libkrb5-3, libk5crypto3, or
  libkrb5support0. All of the other packages for which it provides
  debugging symbols also depend on one of those packages and always
  will, so listing the disjunction of every library package is
  overkill. Remove from the Depends several obsolete library packages
  no longer included.
* Drop obsolete Replaces for libkadm5srv-mit7 and libkadm5clnt-mit7.
* Wrap krb5-multidev dependencies and description and shorten the short
* Reformat NEWS.Debian to avoid using a bulleted list per devref.

[ Sam Hartman ]
* Link libkadm5{clnt,srv}.so specially so that the links work without
  libkrb5-dev installed

22. By Sam Hartman

* Add replaces to deal with moving files from krb5-multidev to
  libkrb5-dev, Closes: #565217
* This is definitely the getting all the conflicts combinations right is
  tricky series of releases. Sorry about the wasted cycles.

21. By Sam Hartman

cve-2009-3295, MIT-KRB5-SA-2009-003: KDC crash when failing to find
the realm of a host., Thanks 2Jakob Haufe for the report to Debian

20. By Sam Hartman

* Fix typo in control file
* Exclude usr/lib/krb5/plugins from dh_makeshlibs call to deal with
  behavior change in dh_makeshlibs, Closes: #558719

19. By Sam Hartman

* New upstream release
* Revert relaxation of Debian symbol versions introduced in
* Fix kproplog's manpage (LP: #374819)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
This branch contains Public information 
Everyone can see this information.