-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 05 Jul 2011 12:01:35 -0400 Source: krb5-appl Binary: krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd Architecture: kfreebsd-i386 Version: 1:1.0.1-1.1 Distribution: squeeze-security Urgency: high Maintainer: kfreebsd-i386 Build Daemon (finzi) Changed-By: Sam Hartman Description: krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos Changes: krb5-appl (1:1.0.1-1.1) stable-security; urgency=high . * cve-2011-1526, mit-sa-2011-005: Krb5 ftpd fails to set correct group permissions. The ftp daemon always runs with the group permissions of the user it is started as, probably the root group. Checksums-Sha1: ab6af6016eb04c737f03c55f6b063db5293dd558 149134 krb5-clients_1.0.1-1.1_kfreebsd-i386.deb e7d186bb8295226d1e9ec1a07be4b73f3ef13d12 56318 krb5-rsh-server_1.0.1-1.1_kfreebsd-i386.deb b389693e1741e7b380cdcdf43fa79c7c46736f26 41696 krb5-ftpd_1.0.1-1.1_kfreebsd-i386.deb 7bcf63893f3640a4d2bde08a0aead121fd330e75 46510 krb5-telnetd_1.0.1-1.1_kfreebsd-i386.deb Checksums-Sha256: 27dfd4b90bb361acf04588e394986955cd3e44360dd338a806e7828211b9ffb6 149134 krb5-clients_1.0.1-1.1_kfreebsd-i386.deb fe60306dca1582904a41b72a499778139990638ccc34eccc79f5495704433483 56318 krb5-rsh-server_1.0.1-1.1_kfreebsd-i386.deb d33f80434527fa07ac14e0b4d1947eb8344c551482b812526c33ac2a2dac78fe 41696 krb5-ftpd_1.0.1-1.1_kfreebsd-i386.deb d78a83749819b3cc68788241537bb902caa59852a943be622c4ba8fd34806a92 46510 krb5-telnetd_1.0.1-1.1_kfreebsd-i386.deb Files: b2505cf3a5fde25b0e86e57935f50dde 149134 net optional krb5-clients_1.0.1-1.1_kfreebsd-i386.deb be116f25f0631608fb2ca93c31a3e489 56318 net extra krb5-rsh-server_1.0.1-1.1_kfreebsd-i386.deb b014aa16668da3033ff48af839722ba8 41696 net extra krb5-ftpd_1.0.1-1.1_kfreebsd-i386.deb 6053e40ae7315fd3986ef03927ef3a24 46510 net extra krb5-telnetd_1.0.1-1.1_kfreebsd-i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQIcBAEBCAAGBQJOjKUbAAoJEMXOXcLFQs1ZqJMP/1iJA13PxgXeKDD09qWjmuug jd1IXF3xJOYIaRjJ8r3KTLJzNb9mAeIyGJvIF5aCtXusM62V7tN27opeJwr616CO QWUtiSZLtUO0hZVHPHZo1NYXqS1JfEaDSSz2re4MFD74CIrmwqbSd/98KsXXoyWH neInAJ0QeM3P6xDKBxR+Z67tb4I2459EIR2rpV2ZxRpoaIEwGkN6g3FPVNxFBIwH c2aLouWruCD2siJIXTjv6kLd6m+PYu5XEgc5S/9GH1MBm1i8gR4Wm2jK/kRKfjt4 NqKPxSDjrX2oTn/qrAUTcIkDmGlyyx3labk8vMR2smLkg7qGPmzQcSOTpz+SX4Hi ygqjabBYzgFxId528EdkxVRtCDfiOX7ZK0MbOzUZcvhAKTRYj07ee7kIYE1ISX6U LdjEt3uYVvH2+P9UOT4jzjKhcENrUtXMMTmrtuB2wdg5XYfQC4jn96OiLOl3RZs8 KxIKaIod7nOHwHiziQFbfXCCoA/8eL7m+0EYL48UUUwi7k4OjQwgdZ7j7sVpWzks 69swVDmHDQGLl32kDT7OKQYi35BwaTFrD3ZI7GT2bphBVXetYi6e4DwaxpK8LpSd EMdMT2la5KiF6S4UwCg3lbIuLcf1YDb+2QgoHzniwfYsHvB+YIAzyRANYsXjtjie dUQWLZ8WTay6d8qLrUk/ =LOR6 -----END PGP SIGNATURE-----