-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: mips Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: Debian Build Daemon Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: f17ffe4c3b667aaff1623496da1067e94dea2a51 152736 libkadm55_1.6.dfsg.4~beta1-5lenny6_mips.deb c50b900607d44a6118baa40af6708c6f9ee9d4e2 457424 libkrb53_1.6.dfsg.4~beta1-5lenny6_mips.deb 85308221f1f3a96d47a9860d428feecfd8a80b09 140300 krb5-user_1.6.dfsg.4~beta1-5lenny6_mips.deb 72c0003555a043cac2146e459d4b8d43ce3682e8 236478 krb5-clients_1.6.dfsg.4~beta1-5lenny6_mips.deb 9eb30dbfee5420593f47f91156876ac9b274ba44 92440 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_mips.deb 0801b5d48542b23092a83392379d142a1eea75a9 69450 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_mips.deb 1699c4e7fa48bac6dc53b299db1788d75b6d8e1e 77420 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_mips.deb 288ebe8cf7cd3a631f89954f352671609ebc062f 194870 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_mips.deb 1aacb6643c7e66323b53a08e1cfe1cfb377dc357 102836 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_mips.deb 052eec797f9c7b8443ba5a29f970cf85217bb046 90784 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_mips.deb 93ca59379cf20c670c2280ad83c8ebef9face744 94440 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_mips.deb 4bae122d3f5e761f57c1b02887a72455fa0034ca 1384562 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_mips.deb b2402cd79372ea4844271f314b15dcc82644034a 65330 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_mips.deb Checksums-Sha256: dd9c5f2fcae22f31336bb834610892bfb8c3b72fb9d2fa731f5f45348a335864 152736 libkadm55_1.6.dfsg.4~beta1-5lenny6_mips.deb de6ecfc3bd1cb90d2876ed287a0659875777231a7c3155ff0ab44a8684b48074 457424 libkrb53_1.6.dfsg.4~beta1-5lenny6_mips.deb a5ffe9ebfe43f3eaa12869b057eab8d45385200e939d6b28fad2edf1f47cefb8 140300 krb5-user_1.6.dfsg.4~beta1-5lenny6_mips.deb da3f2ddba080b6444aaf46c7fc63d3dd48df0699b6dcd6ee716dc67d532ceb92 236478 krb5-clients_1.6.dfsg.4~beta1-5lenny6_mips.deb dd95ffe1520e0a8310d40d99b198270c9fba4779be53fb9e85e3fc1d1c0e02a3 92440 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_mips.deb ee49ba7100e6d73883dddd04f679d57f0301963e96b0df1b0ac38380019486aa 69450 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_mips.deb 054c6bd42a1b42735dfa0dbd558b730eb5d1ab7db4ec02e2ee06fce437259863 77420 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_mips.deb 8cbab9689d9ea2d56409847469ca7707d5a712d12844c5c79e569e5d6e8748b8 194870 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_mips.deb eeea52dcdaa8a672b2f49ff382e6ed4d1e66f718c0462dc14d09d4c6ccdc07dc 102836 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_mips.deb 8e57d4e154078515743ae8e14ad63a28e625d8f9cacea5418917a00631324f91 90784 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_mips.deb 14845a70c0f8e8ad534ff93d0cc626f58542d2785ae8c0298d5d27d71a384ca1 94440 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_mips.deb 77d5539ac85ba77eab7443be381f9c9c87f1276bb7a3f5f0ebd138377d6b2168 1384562 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_mips.deb 95a56f14db83d6732e4a3814d745713a4c40615ea0a2766ff3c2a09828292848 65330 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_mips.deb Files: 0100228807d4bace1a98ac1f45a5fd26 152736 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_mips.deb a3deb3171ba2f86da21de09b3a31ecb3 457424 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_mips.deb 6b7e147e84a2e5bddc9c2e8639616d0e 140300 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_mips.deb 1cd95c351bf3f7cb39fab50d4c2523f5 236478 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_mips.deb a7fb6e1e7a466dcdf06463be29d967d5 92440 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_mips.deb c7db7e6daa5418ebe4d9d128132338b7 69450 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_mips.deb 9c3b58d4a5fd1f7fc24aa2266943622f 77420 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_mips.deb 4cfb31b80126bcd69af1dc18080bc9fd 194870 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_mips.deb e801c09aabeb27562610bbe5dde26fcd 102836 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_mips.deb ecf1c49b66b2519cf12d74ccd4670f6f 90784 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_mips.deb c82bec86185b762cf55f1e72917a23c9 94440 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_mips.deb 1785d83ccc367c7c62b5698b5d114e85 1384562 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_mips.deb 8992563cf2dc3279a6fbf814d51c1cf7 65330 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_mips.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFM+TjTbxelr8HyTqQRAsaRAJ93Ry4MgYlMasUzCMeo1YJErV/c9ACfdHuv +8fLEk+JXHhtusWmdxVHji0= =8wp9 -----END PGP SIGNATURE-----