-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 20 Nov 2010 15:28:58 -0500 Source: krb5 Binary: libkadm55 libkrb53 krb5-user krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd krb5-kdc krb5-kdc-ldap krb5-admin-server libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc Architecture: mipsel Version: 1.6.dfsg.4~beta1-5lenny6 Distribution: stable-security Urgency: emergency Maintainer: mipsel Build Daemon (mayer) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-doc - Documentation for MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos krb5-user - Basic programs to authenticate using MIT Kerberos libkadm55 - MIT Kerberos administration runtime libraries libkrb5-dbg - Debugging files for MIT Kerberos libkrb5-dev - Headers and development libraries for MIT Kerberos libkrb53 - MIT Kerberos runtime libraries Changes: krb5 (1.6.dfsg.4~beta1-5lenny6) stable-security; urgency=emergency . * MITKRB5-SA-2010-007 * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. Checksums-Sha1: 0d88320470e8926a638ef3815a0ee15d505f09b7 153052 libkadm55_1.6.dfsg.4~beta1-5lenny6_mipsel.deb dfd578a87de4645085be80bd8719708e867a2002 458840 libkrb53_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 0b67b055cf8387b12b0393affdba4201b31e9d9b 142702 krb5-user_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 3cdac8ba505c2b0c61596987c1c7c41b5de9c77b 236774 krb5-clients_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 68524343756185f1e6685514d92c648657d842c7 92834 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 6cbd18bfc0626d1f69141e41d1ade4e3a837a756 69330 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_mipsel.deb ec1b110821683a978e6880d2bff541fcac5cb861 77306 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 3aeeccf200bde2c2b2b398df353680b77838aaa3 195152 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 7d919befbd8ad09f95bf27abd852c61237eaab99 103190 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 15f2d88ba774b04377edefcad8f3ffd5c120f864 90396 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 026d9dbd8a7e80b372334fbeac2f801a7b306193 93116 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 762a6a193bede6bda761a5a19a09cd7a13549c2d 1355246 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 23531f9214e699f4ab2af87fdec1b2e068521c88 64324 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_mipsel.deb Checksums-Sha256: c97e4347830ca027cebf0da18b3c0c3b2f5dd7ff6218e906bc492223eb714add 153052 libkadm55_1.6.dfsg.4~beta1-5lenny6_mipsel.deb ddecceaa0d54618c15f19d478831721890abcefc432f8eabaf720e7157c3031c 458840 libkrb53_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 576d8c5670b0b13f3506d60954865779d9455847797b1fa264374f5670011716 142702 krb5-user_1.6.dfsg.4~beta1-5lenny6_mipsel.deb fe1ecadc6e379ada2ac4b69396340c6b5464047af6e556cea7e3c7f1fdef91dc 236774 krb5-clients_1.6.dfsg.4~beta1-5lenny6_mipsel.deb afa2f52c6c8b738805eb310269f67b77e04f26fbd990b5d905db85480068f492 92834 krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_mipsel.deb c69ee5c9e35a2840be57ecdb14ea92ff9aebbbadb05a2e9f7d64fdfcddd44228 69330 krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 4c7b1562a457a85bc1ae5d2c5ff76394591622538ed310149b98618d7d5bd1bb 77306 krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 571678f1b991b3a688ac800187ab4392cdc5dcedd11d70478e20b8dbb0bf0888 195152 krb5-kdc_1.6.dfsg.4~beta1-5lenny6_mipsel.deb dd7aa8926947cbd213e9f689cad89ba34ed016d4c18a62e82597b7e56b53afb5 103190 krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_mipsel.deb a75e27815abc3a21dbc5078e5684c3502b455858a2d9b23ffdf47e305b08a670 90396 krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_mipsel.deb ab95982e30478dd05d9d4f5819b6e4cb7edb8c1520d51225d89c71a16fa469ba 93116 libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 7ea9ca92d5b1a7867756df49b322049231cf871377e94bbcbcfe810e96d78985 1355246 libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 8c00b9a70becd29da2e5476e9611307f0f51dd27bfa44ef5898d84ad69faa9f4 64324 krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_mipsel.deb Files: 73ab4d2e9c2b5ab1f54f1ebb651fb63d 153052 libs optional libkadm55_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 7d5ab98636d4c9d8c1a3825776060ba8 458840 libs standard libkrb53_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 31544fc46b3986fe3c4aa09b1a672810 142702 net optional krb5-user_1.6.dfsg.4~beta1-5lenny6_mipsel.deb ea8cdbb968dd4617196128214e5eb722 236774 net optional krb5-clients_1.6.dfsg.4~beta1-5lenny6_mipsel.deb ecb8be5b35484ad4227f63d6eddfb157 92834 net optional krb5-rsh-server_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 9883d37108a16d928c76e13d15e751d6 69330 net extra krb5-ftpd_1.6.dfsg.4~beta1-5lenny6_mipsel.deb de81fb54a73dbfe0319dbca1ecd57724 77306 net extra krb5-telnetd_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 24d68eb8d97600ab1ee1c1be32c3fc6e 195152 net optional krb5-kdc_1.6.dfsg.4~beta1-5lenny6_mipsel.deb b57b4d9eab321b471f901f64068bd088 103190 net extra krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny6_mipsel.deb f98800fec398247d95cc53674c584861 90396 net optional krb5-admin-server_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 449aa3e82720a01fbc54b6161694f069 93116 libdevel extra libkrb5-dev_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 71dc1b288267260e383bd10a24d32c97 1355246 libdevel extra libkrb5-dbg_1.6.dfsg.4~beta1-5lenny6_mipsel.deb 9b85a9d3aa9db68197164da735a2342f 64324 net extra krb5-pkinit_1.6.dfsg.4~beta1-5lenny6_mipsel.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFM7DLPbxelr8HyTqQRAtBIAKCqZglAcSxGXDOvBUu15lUQZhDiiACfQrhd jHZVcUEjkfCMCEXaenjMgfM= =U5A8 -----END PGP SIGNATURE-----