-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: source all amd64 Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: Sam Hartman Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: db9d6db730a3c3fb00d4fdd23b7d4ba96e1013e1 1537 krb5_1.6.dfsg.4~beta1-5lenny6.dsc 9fc5e0075dfab958a08bae6018cb28acd2f319ee 850645 krb5_1.6.dfsg.4~beta1-5lenny6.diff.gz 3c9b637beefbe1d9732c2ee555b9c66fe38885f6 2147158 krb5-doc_1.6.dfsg.4~beta1-5lenny6_all.deb 3d4c90c33e3fc1211420bd754d86a90e41567a82 169486 libkadm55_1.6.dfsg.4~beta1-5lenny6_amd64.deb 13b0bff1170c418a03ee6d8ce76f77b62afeaa5c 519714 libkrb53_1.6.dfsg.4~beta1-5lenny6_amd64.deb bf6151188c99cb529532304ff6fa0a56b6332c8a 147192 krb5-user_1.6.dfsg.4~beta1-5lenny6_amd64.deb 3060b131939ee639cd32873b9798291b43f53163 238594 krb5-clients_1.6.dfsg.4~beta1-5lenny6_amd64.deb cf05c92e20512e12808c92d396674e587f9f7936 95304 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_amd64.deb 39882cef26e980b2bc2544b86ebd8d910becee00 68972 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_amd64.deb 28deb9fa92e95119375997087194f32c4fd3d87d 77118 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_amd64.deb f598d40997637bbbafb61e8433188696a85a0382 199668 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_amd64.deb c4835212a058e9455529e084efab353b35febfde 108488 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_amd64.deb 0380607dcd19359932ec8e56f374c2b002d734fa 94296 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_amd64.deb 498d9230777bc93ae40e08d6f6a7ee6ba7d69ab8 93680 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_amd64.deb 5f3d38c5a00d6545eb08ca334c4d1dcdb58a2065 1474680 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_amd64.deb 44aa1fc8f9601c3052afe973645a35c8b7faadb0 68234 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_amd64.deb Checksums-Sha256: a8ad35d86498e90f4bcdc660e7f302249417fefe93d77f2bab45d3b40e39458d 1537 krb5_1.6.dfsg.4~beta1-5lenny6.dsc 8d0b058511e2280ac2aa748d6bef7773f5fc084a18b208107c357ba65350df7b 850645 krb5_1.6.dfsg.4~beta1-5lenny6.diff.gz a578b11b31397e3ccda04dd35c0af50be157aef432666948d9ee123fea32d312 2147158 krb5-doc_1.6.dfsg.4~beta1-5lenny6_all.deb a32ee1164452943a6c752b6505400d548d83bdd8ce05f3b7063407a440d90566 169486 libkadm55_1.6.dfsg.4~beta1-5lenny6_amd64.deb b8c735eaacd968fc5a7a56f59347b17eea337ef6d40824e77ce9b7d51bdc6185 519714 libkrb53_1.6.dfsg.4~beta1-5lenny6_amd64.deb cb5f49c65837cdb23595eef9777247b1cac39554686efc414e801e3c28fdcccf 147192 krb5-user_1.6.dfsg.4~beta1-5lenny6_amd64.deb d2bbd685eb7fac62a399989732624c9d8d89faf25d09e4ce2fd2f222eaa2df52 238594 krb5-clients_1.6.dfsg.4~beta1-5lenny6_amd64.deb 9b14a44e6594cdd37d75e798893ec4720be09b45d386193718925955714d9918 95304 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_amd64.deb c7bcdf428c7dd7d705c2e2c89922d9992d3ab6e565650b9dcd05b1d8c1e0572d 68972 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_amd64.deb a1cdfb32b3af638bdf287aacc68a19d4c00c3aa83b6dd7a1c7ab3453dd7ee7c6 77118 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_amd64.deb ea529f351dc081b880e62ea3a5d1e73fa831435984a3d71ee4bc623ecc7a17a1 199668 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_amd64.deb 6e741033ee76d9d41c64c4aeb96f1b4c5e0b955cce30a4eb576ef477b8bcb028 108488 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_amd64.deb 349502cf7f7948dda7a34fcb069765204a4fe2437d8df28562ba61b47a79e3fd 94296 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_amd64.deb e0c3d2ce79672e24603d8a90d599d5337f079bb7048308f7175adbf17a80bed8 93680 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_amd64.deb b44df978600098dcec4b17f714b62472f042a53880ae866b7caa9f51a83c7a02 1474680 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_amd64.deb 15bf59bd04a1ab4307916bcb71b8d8b3ad37e7908d899f3cbf575251771e117c 68234 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_amd64.deb Files: 6f0899080bda14e0a277120d9395a707 1537 net standard krb5_1.6.dfsg.4~beta1-5lenny6.dsc fe444178e83d0010636cf3c50129a437 850645 net standard krb5_1.6.dfsg.4~beta1-5lenny6.diff.gz 2cfbb257055a479cfd20c28ac036841a 2147158 doc optional krb5-doc_1.6.dfsg.4~beta1-5lenny6_all.deb acdccf6feb7dedd595bfc12ad892fa66 169486 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_amd64.deb 2b3e3ba20811e361a01428945c7af509 519714 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_amd64.deb aa391b6dc07005aefa2185211e57d095 147192 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_amd64.deb 093eb931610c5e4dd7a85f64782c1aab 238594 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_amd64.deb 5152166765688f5a6cf194c92f640df3 95304 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_amd64.deb 6f60567e22ae41f054329fdf338f89ae 68972 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_amd64.deb c9cae89896b869689e3a96257ec6a93e 77118 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_amd64.deb 205aee381d50d20e538e13c399269b24 199668 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_amd64.deb f173adaf924918436a1923f83cad2694 108488 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_amd64.deb 7dd3e04aca1d7c332a466d1e97b0d72d 94296 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_amd64.deb 099fcc98dd4c1e761ec863572a751e7d 93680 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_amd64.deb 6410656466c3300e86ed0c319c48f3b5 1474680 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_amd64.deb 0f4adafd1029f012d8f1048bc76e2c69 68234 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkzq1h8ACgkQ/I12czyGJg/6zQCeMCBED8C5nA5OPx+BsurGZE02 JhYAoMgskTzH4C8S8kDwnaFlTU2UVIa6 =iEFx -----END PGP SIGNATURE-----