-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: ia64 Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: ia64 Build Daemon (caballero) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: c79a52fe9053e60fe86d17d656f4f619f508f236 219892 libkadm55_1.6.dfsg.4~beta1-5lenny6_ia64.deb aca7cb1601dcae9b978d7e2f85b3c7d4022cb261 701668 libkrb53_1.6.dfsg.4~beta1-5lenny6_ia64.deb 39014751c6e81689343b2ea3a0a58e7697163cf8 177706 krb5-user_1.6.dfsg.4~beta1-5lenny6_ia64.deb a12fa5b5f7432869356c348aaaf264c41dda013e 312642 krb5-clients_1.6.dfsg.4~beta1-5lenny6_ia64.deb 64faa05d38397b327dc3a95dc9e785a48385661c 118856 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_ia64.deb 38812619745d0f250a0497ef6ed7c3bbccc719f3 86090 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_ia64.deb 31bea2ed8189fe93a5fe33ade7383e5b0906d8f9 97926 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_ia64.deb 07899ce83e7a98c4941b4adf6be0869977cdd0c3 271112 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_ia64.deb 86261ef86279a9f2d1a9c242778aaf5b547cf036 139358 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_ia64.deb c2451693b786ccfb3f1b9d7218b2a2eddcd75f07 114074 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_ia64.deb 6c614cdd8f3e76ea0dd0b1c47e090e35014cb7f1 93090 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_ia64.deb b37410a519c64691b7cc38711b31e1b9fe028efc 1283710 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_ia64.deb f6a9fe967ceab6a67db2f55204e2c466e98c5f39 85716 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_ia64.deb Checksums-Sha256: bf00f1b4eaed684b6b60d3671da9b42937aca09d294e93e4690fb827789f5a31 219892 libkadm55_1.6.dfsg.4~beta1-5lenny6_ia64.deb 80552bab1f327fee63cd05bd13ef5a1a498393340b13889f0619757979433c3f 701668 libkrb53_1.6.dfsg.4~beta1-5lenny6_ia64.deb c406effa40c22143c0661ea1684589c68a698cb9e2f09258762ff2940012542c 177706 krb5-user_1.6.dfsg.4~beta1-5lenny6_ia64.deb 925cb0f78bee7c88765a8479205b2012e457c9b993ac4e3b0ce7a2ed9a5f5bb0 312642 krb5-clients_1.6.dfsg.4~beta1-5lenny6_ia64.deb a11e8b2a3f8431f3232151561e1ce7e0f187c7be76b2cd6f18e002fb1cda0d19 118856 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_ia64.deb 795bbe7710e9cb0a840d126caba5c5fc23936d183d3f21cd06103a93d28f34b9 86090 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_ia64.deb 04f19830c2b88193a05cad813e471951f3dbd5dd4fd39f8b26d249bf83589da1 97926 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_ia64.deb c0d95e8b71aa16e3ba6f05edde6d8acdfbde2d639d41f191253ab1aff31867fb 271112 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_ia64.deb 46a4db8dfc488b81b1c12378125e8a2da13c927ff1ba135cf0e227b6fe18808a 139358 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_ia64.deb 256b31b2dcb49d173b0f8a5559188143b95133fb0a96664172569d35808bc224 114074 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_ia64.deb 7e26c2a805395041794df2f0e1b8146b3adbf95b656328aae7e61b84c71c8c0d 93090 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_ia64.deb 1c6c525ead33cf88d05b925c7762cde466d2cf2e5451609ab39ef6dd09236a4b 1283710 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_ia64.deb eb633de1290a5b6f262997b79d0fae37d288f5c259aea9130b04e8f81294435c 85716 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_ia64.deb Files: 87c96266bcc423c997482e8773f8c65c 219892 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_ia64.deb cfa44e532d38ea9e98480046bf52cd47 701668 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_ia64.deb 47edf9284e84a66f3af6ddf990c5f12b 177706 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_ia64.deb 7ca2b0ebc9881b5acb78af45f3ffbef8 312642 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_ia64.deb a95178fd98e940789cee1b44d3cb2b82 118856 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_ia64.deb f565730bdd7ee87f48fc50ca25cae5c3 86090 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_ia64.deb 59018641d2240904775bd4e14659af6f 97926 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_ia64.deb b45060574fe4b85d2642109ffcec4764 271112 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_ia64.deb 1a61f65f55fec549bb804e706b3fc8a8 139358 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_ia64.deb bb0fb3f1e915e31ba293e0f294d226f7 114074 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_ia64.deb 5ed61e60f92c6056369bd8f5806fcf98 93090 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_ia64.deb ae2fab7815677f0fe3b9ce0f9605e158 1283710 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_ia64.deb 72c79658cf384223ffa9fcd2ef60e36a 85716 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_ia64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFM7DLRbxelr8HyTqQRAgp1AJ9B+TkS+niyDbnU0dvzReBd/h9cTgCfdO2X wfcRb0BxcfdXiup9iglr0v8= =Rlab -----END PGP SIGNATURE-----