-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: arm Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: arm Build Daemon (cats) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: 3690ed1366282bd02cc8fb2e431d4583ae455440 145822 libkadm55_1.6.dfsg.4~beta1-5lenny6_arm.deb afc2ebc10ba58a82b6c58a2e2b1bc3d07704e08a 449956 libkrb53_1.6.dfsg.4~beta1-5lenny6_arm.deb a8033c57c66391d7b86210cb79490df9f94e4792 135900 krb5-user_1.6.dfsg.4~beta1-5lenny6_arm.deb 94697e297288bff491cb19846fb77ef7f3dbb4df 206446 krb5-clients_1.6.dfsg.4~beta1-5lenny6_arm.deb 19777e2f5f4c3d9471ed5240422d8540795d5fda 87398 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_arm.deb 33b4de3f648e7b490eff882e960f67a2d468a26c 65632 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_arm.deb 9642fcc82441235a2b1377adc4d4a9620fe3a315 69728 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_arm.deb e214b01f2319c2ee36a03d9d2c501bd8418dbcc6 187862 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_arm.deb 6e68cc78ff2cc4e7398343571a0fc9feb72d42d3 102412 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_arm.deb 081c69ec25201d23defaa8cad4907abfc389b283 86736 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_arm.deb 9c0544bf6987cd4ce7a8ec80410307d478426b90 91650 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_arm.deb 42d441a2d96a85bcd36aaa7fa8d759ae53ea65e0 1283282 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_arm.deb fb2ce39fd991d0260c707881ce4d82428746f11e 60962 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_arm.deb Checksums-Sha256: 4d613ec8719ac4c54ee968378850e83d291c506371ac1e31373f811b863f24e0 145822 libkadm55_1.6.dfsg.4~beta1-5lenny6_arm.deb d90044f5d97f650690afd91f4d97d56f70554fa11c037e2fd1d8b4fc59b4ea2e 449956 libkrb53_1.6.dfsg.4~beta1-5lenny6_arm.deb 4cf24f09b74f8256e97fea775f2d29771f6b437bc6f1e07fb7ac2dd21f5a5863 135900 krb5-user_1.6.dfsg.4~beta1-5lenny6_arm.deb 4485bc132d14ea5ac665969c3229e8f079f4dc767002496c5a83c6759852914d 206446 krb5-clients_1.6.dfsg.4~beta1-5lenny6_arm.deb aa9f551f5693861cb22a9512ba213d00fddffd913cd7bfb033e3dd9d763bd8fc 87398 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_arm.deb 59bafa8a6c5e8f39a15bc5617a2f39fc0413abcb55c189c3510cc8702766b400 65632 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_arm.deb 06705f244704e743e8556acb3dad27be23b6bae7e2868d042256e245ef523025 69728 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_arm.deb d209a082c6644406fed6ea0118171280f7400ce14102a4adfca2847eea7bd5da 187862 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_arm.deb e308d38e03506c3ad5953d2a9cf852b9aecf133446bef4527166922daf7a449b 102412 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_arm.deb 2127359c4c2d6db5495e684debe79d96433c09ff57f9d6f1d6ec42d3ddb9856c 86736 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_arm.deb 910be4796cd99e6e98b6401d8d9df86dbba2bd6b5534dd11d5161fc09122366e 91650 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_arm.deb 9e0a9060a4ea86ae636614f004ca265a39e65733e96dc6f78d864605aaba04dd 1283282 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_arm.deb 41c015896456ace277a13fa29b7d4e89f3482b8940708e095ff24c7e934576a5 60962 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_arm.deb Files: 3019f82d0fb83200296d6c56a31a2738 145822 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_arm.deb c105addd63b71be6d619b4789c850d72 449956 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_arm.deb f425d1b6c1f88a54f5476f9a4802db0b 135900 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_arm.deb cc1815c08f3a809d6a713cb35aecc69f 206446 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_arm.deb 2f0a3dbed0a63b1c4512adfb98db2067 87398 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_arm.deb 35d0e0fb2f05640a5a09c213929f163d 65632 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_arm.deb 2ece460488226c07c43a845c0444de81 69728 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_arm.deb 72a7a81936a350777c4f586ace0c8ddb 187862 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_arm.deb 38bfb425ef261cab3dc2c69e329e5b72 102412 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_arm.deb 1707f506ac462a739acf8cc723bfc443 86736 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_arm.deb dffa38de9c76d431f8f4705f4d3f2c48 91650 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_arm.deb 63ba90efe2200d804e1f1f5ea2dad6bd 1283282 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_arm.deb 78de95ae8bcfc091d1c86fe959436fbe 60962 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_arm.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFM7DLNbxelr8HyTqQRAlZ9AJ0S0cHeXP+h4LuEV0KyojU8KzSuHQCfQGdC aa6XFI4x1ms4tEbLU5KsNjo= =bs3u -----END PGP SIGNATURE-----