-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: i386 Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: i386 Build Daemon Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: 7c3871e2d82bddde8f408c0b7d797c7d6d7015ef 154656 libkadm55_1.6.dfsg.4~beta1-5lenny6_i386.deb 6b84257312690f3f471e685a08eb644200b4cab4 480376 libkrb53_1.6.dfsg.4~beta1-5lenny6_i386.deb edbc943fd3ce663485f15f52fe84badccd2e615c 135480 krb5-user_1.6.dfsg.4~beta1-5lenny6_i386.deb 8ed41bee362230dce433cfa0c13065904b90e0ff 214452 krb5-clients_1.6.dfsg.4~beta1-5lenny6_i386.deb 8969a0c0a3686006145ff841619969f6035ba76a 88020 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_i386.deb ad866155fc7ee263d7baed8b1db98d091212285c 65434 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_i386.deb 6902c1ce9c68db9a3f35ae6f23abc452686c43d5 71322 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_i386.deb 7cb6d6ab0961b2d1655ee21bf67ebc1eb6abda04 187626 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_i386.deb f4323edafa79c4d3621d09e5714eb303cb597c1b 103108 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_i386.deb 15a20e6838fdfad75104e80144d0d0d78bc7a4c3 87358 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_i386.deb 1d3700a3b58cde93ba59fb4387113caab59588e1 92288 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_i386.deb a3b4a4c73d963310f15b0f23298a03435f75ace6 1415368 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_i386.deb 6fd75c39a23c365996e390440a78ea84225f2e19 66584 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_i386.deb Checksums-Sha256: d3ca16da2acfbbb8c78c2fcd32e47a24cf18f91e55d2d31dd8209cdf3d94ec51 154656 libkadm55_1.6.dfsg.4~beta1-5lenny6_i386.deb ba965d67b9bc792f43bb2fc1d7ec719d89259beaf78377e39a6b6fa98adb5950 480376 libkrb53_1.6.dfsg.4~beta1-5lenny6_i386.deb e92343505a914c56d4c81fcb0342b8f1c547ccc04f3b6269e059a45f136b6e2b 135480 krb5-user_1.6.dfsg.4~beta1-5lenny6_i386.deb 75b9382f3622a2af10eca159a77febd61e0973900ee92089410ca34f301cc415 214452 krb5-clients_1.6.dfsg.4~beta1-5lenny6_i386.deb 42683de342dc8d4dbfc46e17c4995a0f6af7240b9217896e82ef0cb14664f3ad 88020 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_i386.deb 0e9dc514aebb018c2d929b96b097655d0c72714748570aa68777a3e264a9aaef 65434 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_i386.deb e22dc82aeb644333a2977881d8b5bc16209097faf0ab7fd0d5693d4f4bc5ad08 71322 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_i386.deb 45ca653d78e7e0a23e9e78b2e4fba8854040771c4f74da04f679a079f170d3f2 187626 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_i386.deb dac95e564c7fab915fa44b358b44849d76ba9298b619c1191f3ad841ece9bb32 103108 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_i386.deb 1af40ac369e4d495b0b41b624726bc9164a507ccaa02f8116f6b2a077b4b57de 87358 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_i386.deb d91259b67d00f6d1b697973ddf88ab5ddb566a16267f6d18fbd71a4a173f7f9b 92288 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_i386.deb bbd25759dafb95e501fd69091ff8f34742dc34331e6053e9bd4a174486a5904b 1415368 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_i386.deb 2609e9db9cb786b8277ac547084da7b43994e2c54729d72a22fb144457370473 66584 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_i386.deb Files: d627b36b078d37ce2619d8d3d7560f18 154656 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_i386.deb 1b54c6218855debf2cf2b815d9f21af2 480376 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_i386.deb 7fb584d49bbc645596adcc40b45d0504 135480 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_i386.deb 738e8a393925a78cf3fa4b4152373a16 214452 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_i386.deb 5ecebac43535df0d9df407d54c325a09 88020 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_i386.deb ac3bfea2c4de893d40708450c3922e48 65434 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_i386.deb 31b9dbe9ecfbf411f146de1da7a8f125 71322 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_i386.deb 92e2de91f8464689475f670288567a14 187626 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_i386.deb 3f4e8db534b71365d7e37a452ab789c7 103108 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_i386.deb 4a0d3c20363feac1dab30797dc43d805 87358 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_i386.deb 83aa07d025154f5bc95b5f4192d5f71b 92288 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_i386.deb a4598be6685cd24f21ef44f48b09efbc 1415368 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_i386.deb 8b3be11d78b846d9fd4597a29527f682 66584 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFM7DLRbxelr8HyTqQRAoeZAJ9E+M2HEd2Ln6mPyP4Vbwm7Qwv2DgCfY522 h8d604vGtJpqxiqDVfKyfpo= =7cj8 -----END PGP SIGNATURE-----