-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: armel Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: armel Build Daemon (alain) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: 9b006c0e4875a9d2f164d6b972c7a0307884f208 145336 libkadm55_1.6.dfsg.4~beta1-5lenny6_armel.deb 2cb0731b11b0ee1c47c2992a7e5931c8ab126875 447908 libkrb53_1.6.dfsg.4~beta1-5lenny6_armel.deb 1eab85ee53bccde103ccb45f6456f57edfdc0b22 135224 krb5-user_1.6.dfsg.4~beta1-5lenny6_armel.deb 0154938bd9ea50db143bd6b9e1bddf8d9d782b51 211892 krb5-clients_1.6.dfsg.4~beta1-5lenny6_armel.deb c2ef0a19c8c9b0f2e66850af94f4b07536a847f2 86768 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_armel.deb 2f4d5de0f2b9a118b08b99dea6100db9bb3a5ded 65364 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_armel.deb 725182143bc8070a27089475ae49cdf830d8f116 69856 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_armel.deb dc15283cfe00fe0445341b8a202df254e6dfcfba 185384 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_armel.deb c4adae24cc46f39f0909946ecc3db7bc392b15e2 101424 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_armel.deb 251151cc63cc7b23dc7b78fa31de8195d1457d9d 86204 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_armel.deb 9fd6bb8147aa5f9a7a7c9c30b079b88ba79d4c11 93248 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_armel.deb fd60c947e32410b8832f31db0ec8b889b12ba18d 1290338 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_armel.deb 70d3fac1de440270f2c98df707af6154f93196de 61072 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_armel.deb Checksums-Sha256: 47021da93d22ca832c7c03f122c9945178c50405aeada95093c3ddc3f4db539d 145336 libkadm55_1.6.dfsg.4~beta1-5lenny6_armel.deb cad9a531c26a593590f7a228d384105c96eb363277d0fb67bcfa550bcb774a9c 447908 libkrb53_1.6.dfsg.4~beta1-5lenny6_armel.deb 8a437515cec4b2415c8e421e84a489769346ad4b4bd896da56a0151c6fe517e9 135224 krb5-user_1.6.dfsg.4~beta1-5lenny6_armel.deb d0e05e391a396c8b3aa93d51f7686dc8bad0fde2a2660d775c48c664c2acbc75 211892 krb5-clients_1.6.dfsg.4~beta1-5lenny6_armel.deb 73af19c3687a092fc35f30c778bac432df8a39da4b75cfce49743fb1e6353f7e 86768 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_armel.deb 7a20f8f163e1fc4a99b32ec1540b4568468c84bde076d39749b7cd3be1128135 65364 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_armel.deb 46824429cccd5e027803302b75e27ca3c3ac9bbf2eaa3273cb0fe60d922cd596 69856 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_armel.deb f159d664f2953304909cb5e555597687ecc8bce04b92f2aecc83d37f0647c33b 185384 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_armel.deb d51127ea08e043c81b6316995aaa6d508d0a778d9642192ebae778c5fc620859 101424 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_armel.deb 9e51fdf9e7a838b932a1c5d29a41c8e7bca0dea5b65342bcb0bc3d9a6442b1d7 86204 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_armel.deb bd5aa96a43751eac5ae4eddea2cfdfaba87e9df3313996f0f5edf24a574136df 93248 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_armel.deb 576493c690f76f30d547b6968832c30026f870bc54e34899b418e95948b13b76 1290338 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_armel.deb d0a272cabb1ea2b395a726c3ad3abb6779aa2ef71dbfc5038fb6dcc7bb0ce523 61072 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_armel.deb Files: 3f32d369a693c310a2b2e61a3d0e8eb2 145336 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_armel.deb 83599c10d010cf92f35f268e44b6bc64 447908 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_armel.deb c4a0d84848e75f120479f848860a33de 135224 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_armel.deb 5de75504f3786dd9c7e060a808f93c4c 211892 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_armel.deb 24aec029e6c3e34e49bd3ef7a672d78f 86768 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_armel.deb 317d7d81253df218c13b7ad0c1bc1531 65364 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_armel.deb b31394de93feb7c1992c8f108953f442 69856 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_armel.deb 1574b680a4c4a179b398274e5af28d06 185384 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_armel.deb b0e2e4b9edb3bda171828b60fa698c88 101424 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_armel.deb fbd761e91a724d3f007ed744e0011ddb 86204 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_armel.deb 07e26be26cda15a500278d8383b7459d 93248 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_armel.deb 8c3cfe5bf5c0d3f3900a4ba33b43a1bb 1290338 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_armel.deb 9152b04572a1d12de3c992e52b220127 61072 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_armel.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFM7DLQbxelr8HyTqQRApZ7AJ4z7jRefHbA59keLvdoN1WyJQtnZgCfdcEc kUnsrLy5qmCQRvyLVEuMOdA= =7QJa -----END PGP SIGNATURE-----