-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: s390 Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: s390 Build Daemon Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: afa39b0c4d5fe182c3661e7dac915621bed818cf 170652 libkadm55_1.6.dfsg.4~beta1-5lenny6_s390.deb c3d761069b008ee78e0684734ecd8a101b6c9341 516886 libkrb53_1.6.dfsg.4~beta1-5lenny6_s390.deb 02a1b9b2388ff4abf9217915887881a42b477835 145296 krb5-user_1.6.dfsg.4~beta1-5lenny6_s390.deb e97f491ad331024c7b90ac94f37507f5e8d23396 237898 krb5-clients_1.6.dfsg.4~beta1-5lenny6_s390.deb 6557ec0980ae184fc15a16d1740d046de86c911d 97424 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_s390.deb c22fb0969b7072929364df011b8120336e00ec41 70782 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_s390.deb 2053b9c8747210f034e4375af813570a4846f790 77524 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_s390.deb e0ac9ba7ccb598e5739f875cb15a0009757e0349 200324 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_s390.deb fcaf2249da690766423a1172e87c16bf9b165922 108878 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_s390.deb d991eb7051de9ba12ca5c68e0ea263688df0c4a4 93180 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_s390.deb c3a12dc45b4fc702f6328e83e57a1b1d0bd8d80e 93076 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_s390.deb 02c9c0c1dcd9889b8c0192ae006992251afd8b6e 1366600 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_s390.deb c3c9f486dd639da550c2d6b9dbeeefc2ff226d04 69156 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_s390.deb Checksums-Sha256: 1f405d4d74bcb3e6723db52c4a1487640a9e0e3b1a061ba06689cdd31c1e7c6f 170652 libkadm55_1.6.dfsg.4~beta1-5lenny6_s390.deb 50dacc4fa224b7e2615efe3fa5c3033036a77e1d93831ad9635d309184ba8228 516886 libkrb53_1.6.dfsg.4~beta1-5lenny6_s390.deb 02c4052e8062ed6a3310e4b7a160e24372ef86464985c15fbc7e48c84d47b852 145296 krb5-user_1.6.dfsg.4~beta1-5lenny6_s390.deb 383079e547d0b8a188af58c1f7241e0f4388333a3eb52c87b93239a11dc32a2d 237898 krb5-clients_1.6.dfsg.4~beta1-5lenny6_s390.deb 350fb4b56d4ca12cd546776641ca078d92206c40fbd37db0c71835169992ed89 97424 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_s390.deb 44317fea8b4d580b6ed31aa0bb78130c841b87c960946d251f175c6d4a629569 70782 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_s390.deb 454b39cfa272f349de31096ad9e677e79cee273517015d12d067a9fb1a9a6d80 77524 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_s390.deb c995b705f9d2598c4f0b1998280caf83ca6e60eef480628ca77bedd314c7bda8 200324 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_s390.deb 42244302a7e7941a141f76d580c4eb2c22a85522e29a11d0e6a7bc4e6a537349 108878 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_s390.deb e6b807d6898c1d03c97dbc575b3a6d8810e8a7832e5abb2bd1bd874417380ade 93180 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_s390.deb 9e834ea5b93c60646b3e5c86cd2665fd5bc44ea535e7c9c052a4dead529f3692 93076 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_s390.deb 2dde06ec8f27d8953ff66fcf6920716e927aefeb62b07acf32ab81f4aab20a48 1366600 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_s390.deb d99d7a143d6e04e397a466b81029211535a0487ea742206071a811ffd73ef710 69156 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_s390.deb Files: 50c3a61cf7bd1c6a167217b62549b628 170652 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_s390.deb 844d14b3f6c6259f521200f1cb3af61b 516886 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_s390.deb ae32a498a7d4f72b2b9ace187beca983 145296 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_s390.deb ba3100dd00c70fcfed1ac53a08086da8 237898 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_s390.deb 00da8767f677fb4cce33da81ef9a0b70 97424 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_s390.deb 73b1e1f7a6e41f14fb17fcd88eb16424 70782 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_s390.deb 04b2c4c8acf494db1805d7ecce77b0db 77524 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_s390.deb 82567c38114447e76582d27bdcc52a73 200324 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_s390.deb 9d66c42841eadd067477b43522e22161 108878 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_s390.deb 7c6448d64e1a842ac997580bd4aaf688 93180 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_s390.deb f4d0472c071dfabc449d4dddc374465f 93076 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_s390.deb 523d2ac199c522d5698a552dab95459a 1366600 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_s390.deb 4099a96745e7967ee6b0c96a2f85851e 69156 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_s390.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFM7DLSbxelr8HyTqQRAiSQAKCnXA7xbP+KjujiP3aKXN2RcOg2RgCcC1fk YATkXh4AqFnebiY8VA2cNCk= =8/x9 -----END PGP SIGNATURE-----