-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: powerpc Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: powerpc Build Daemon (praetorius) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: f105e2e03dea63643d557affb0a6661741892a3c 164870 libkadm55_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 7ced41abb542c329e5590db919c2a747eee28dbc 502088 libkrb53_1.6.dfsg.4~beta1-5lenny6_powerpc.deb d6285ed2628de706cf67e7a195dfd82090c7b35d 161506 krb5-user_1.6.dfsg.4~beta1-5lenny6_powerpc.deb d8657aaf141efe8b365d40c7acf5d33d36e6b9d5 248760 krb5-clients_1.6.dfsg.4~beta1-5lenny6_powerpc.deb cea63d162fb31334c2d027b72905a2a51e4743d5 102612 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_powerpc.deb d1f77eac9b888fe069cc7daaa789a3af7346feff 71456 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 162122cdec0a7bcbdc813915f623cc8daa9b3479 78390 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 85a30b03d82183cfbe6ed1e640e337e3b94612ef 208714 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 5c3730079493a370b3108ec0131cfbb241245bc2 112112 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 3d0ea7f9611fe7a33ac490f412f4dc932967e1c3 100272 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_powerpc.deb f3c055c664a83048f931be658c4661899e704577 93474 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 6ac3b7a24f6a88378d418da5d869cebd23521c20 1349228 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_powerpc.deb ee6ac6a564a9f24c64f34b8a99621e67d8bbcb95 67910 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_powerpc.deb Checksums-Sha256: e288c145bdce2d39d06d596066da96a40300c1a18d82ba741adfe96d791af5d0 164870 libkadm55_1.6.dfsg.4~beta1-5lenny6_powerpc.deb ea4593654f62e422097477784f88f2de5daf7586951ed11456d0720f8182d636 502088 libkrb53_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 228a036aea706c127584eb8b22ad5268d66af427a56626593adbc9a3b258e5e8 161506 krb5-user_1.6.dfsg.4~beta1-5lenny6_powerpc.deb aa1a55f21f23e50601fb3ee47b83382c01b6d6a19035adc074dbca0d05324037 248760 krb5-clients_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 0e0f5b25956dbce857b12c6b0f69b59bb3b89b3dfa34a703c24db18017f280de 102612 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_powerpc.deb c7df68f2540891c584cb276cf3c8b9c260668551e3d976a3ce43aa11f1c7196e 71456 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_powerpc.deb ff802343035770fe9e1da4f76f243fe7d3217449b5fdfba52a36656a2b9cf548 78390 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 9f4dbfbc6441b49204faf17650c1d2a4226a3c4c302ed2bad2c0a3a384874706 208714 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_powerpc.deb fbec516d9a2a983e49bcb4afa8e1702987f3e17ef2400afc33454c5f4c8a0bdc 112112 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 0c8989dcd019fec4a8824f3e386a30a7af5609e982abf5ec42544032f132f3b5 100272 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 9703657894f6e709bcaed1507de0793f8ede64bee519e33e469686a11a3cdb28 93474 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 0f327783b81d08b0fcf7d78723447dbbf38058889802357384df3179eaf5d8d4 1349228 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_powerpc.deb c81ee49900f1b2e01b55e8afc8efc4f75522a85b80309889f9d5866ee9b75840 67910 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_powerpc.deb Files: e7eefecd37a09ca4e1649b4e16d9ea0d 164870 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 1b8115b0443258832eddacf54232b3c2 502088 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 4194db65de8937061153ff8bc7c8fe13 161506 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 501bc73049844f47d045c9fd96a6033c 248760 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 27e8db4c6e96124b78cc9ae987d6750f 102612 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 385044cdcd93159f0301c3e0fc914b76 71456 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 82c95ff77bb998b411435c1549754620 78390 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_powerpc.deb a68d811f0ee307844ed1c9f51e17900b 208714 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_powerpc.deb cdf4f547c3c5e459ca06a1015413e402 112112 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_powerpc.deb f74bdaf6136f23982c8b4f5ac13ed83a 100272 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 0c393f7d1eca5668424c29ed1dc6ce6a 93474 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_powerpc.deb 781dd1b6ea140c194a413d816dd71df3 1349228 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_powerpc.deb f66715fecca27b0743645dfe1bb16da8 67910 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_powerpc.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFM7DLRbxelr8HyTqQRAu8iAKC+XFI3d0MflalFpHvVlecGxOVJBQCgivAs 1YRPOyLvI6KT6Fn+OE0otTA= =D8DJ -----END PGP SIGNATURE-----