Your message dated Fri, 08 Aug 2014 18:49:02 +0000
with message-id <[email protected]>
and subject line Bug#757416: fixed in krb5 1.12.1+dfsg-7
has caused the Debian Bug report #757416,
regarding CVE-2014-4345 in krb5-kdc-ldap: buffer overrun in kadmind
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
757416: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=757416
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: krb5-kdc-ldap
Version: 1.8.3+dfsg-4squeeze7
Tags: security
Upstream has committed a fix for CVE-2014-4345 to their git repo; we
should take it as well, and probably push it back into the -security repos
for stable and co.
I am preparing uploads.
-Ben
--- End Message ---
--- Begin Message ---
Source: krb5
Source-Version: 1.12.1+dfsg-7
We believe that the bug you reported is fixed in the latest version of
krb5, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Benjamin Kaduk <[email protected]> (supplier of updated krb5 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 07 Aug 2014 18:33:37 -0400
Source: krb5
Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev
libkrb5-dev libkrb5-dbg krb5-pkinit krb5-otp krb5-doc libkrb5-3
libgssapi-krb5-2 libgssrpc4 libkadm5srv-mit9 libkadm5clnt-mit9 libk5crypto3
libkdb5-7 libkrb5support0 libkrad0 krb5-gss-samples krb5-locales libkrad-dev
Architecture: source all amd64
Version: 1.12.1+dfsg-7
Distribution: unstable
Urgency: high
Maintainer: Sam Hartman <[email protected]>
Changed-By: Benjamin Kaduk <[email protected]>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-doc - Documentation for MIT Kerberos
krb5-gss-samples - MIT Kerberos GSS Sample applications
krb5-kdc - MIT Kerberos key server (KDC)
krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
krb5-locales - Internationalization support for MIT Kerberos
krb5-multidev - Development files for MIT Kerberos without Heimdal conflict
krb5-otp - OTP plugin for MIT Kerberos
krb5-pkinit - PKINIT plugin for MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC
libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library
libkadm5clnt-mit9 - MIT Kerberos runtime libraries - Administration Clients
libkadm5srv-mit9 - MIT Kerberos runtime libraries - KDC and Admin Server
libkdb5-7 - MIT Kerberos runtime libraries - Kerberos database
libkrad-dev - MIT Kerberos RADIUS Library Development
libkrad0 - MIT Kerberos runtime libraries - RADIUS library
libkrb5-3 - MIT Kerberos runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb5support0 - MIT Kerberos runtime libraries - Support library
Closes: 757416
Changes:
krb5 (1.12.1+dfsg-7) unstable; urgency=high
.
* Apply upstream's patch for CVE-2014-4345 (MITKRB5-SA-2014-001), buffer
overrun in kadmind with LDAP backend, Closes: #757416
Checksums-Sha1:
525555cc25bd55ed0ab06df581d42be63cfe3774 2684 krb5_1.12.1+dfsg-7.dsc
fbe64959a68e3185854c3113381137710d9cd562 101132
krb5_1.12.1+dfsg-7.debian.tar.xz
8ba2ab309bbacd3fe7e4800c849542f061b177e5 4691218 krb5-doc_1.12.1+dfsg-7_all.deb
3dd86981a1b48cf6c72cc6e9c0a0e1c8f4b6ae0a 2647968
krb5-locales_1.12.1+dfsg-7_all.deb
d8b2c55a536a74afe2e6ad330dedad96306dd970 135254
krb5-user_1.12.1+dfsg-7_amd64.deb
edc085528dd76a2eb13ff762643f928763f6b75c 205616
krb5-kdc_1.12.1+dfsg-7_amd64.deb
7dc233d702cfaaf9dde4d3840db691f3e5c3fe61 109004
krb5-kdc-ldap_1.12.1+dfsg-7_amd64.deb
f75657b33963f3363ed09aae1158623bcf716981 114062
krb5-admin-server_1.12.1+dfsg-7_amd64.deb
3a91e213db8220ebd5416174f8583a7d9eb49783 140694
krb5-multidev_1.12.1+dfsg-7_amd64.deb
c08084648d3225a8497b24a57d613443236bae8c 44104
libkrb5-dev_1.12.1+dfsg-7_amd64.deb
8256e80ef01a0dc19716b63e58a70fa99355b85b 1406244
libkrb5-dbg_1.12.1+dfsg-7_amd64.deb
ac93cc5e4f9c20bd37c78231f59bec4c0fe3575b 81708
krb5-pkinit_1.12.1+dfsg-7_amd64.deb
31100e50a17abcf17834c974c4d62f9ea25e4896 46610 krb5-otp_1.12.1+dfsg-7_amd64.deb
3627eb7806a90cc470b7cc995985ed33b479c699 297894
libkrb5-3_1.12.1+dfsg-7_amd64.deb
7b3b892367779af06ffb80201136fa83e67b6c19 147262
libgssapi-krb5-2_1.12.1+dfsg-7_amd64.deb
9540aa448caf42ccecb476399652c2cfea0885a9 84414
libgssrpc4_1.12.1+dfsg-7_amd64.deb
7b0586fbb2697d6da67ab3816ad40018ac205330 80736
libkadm5srv-mit9_1.12.1+dfsg-7_amd64.deb
a73372e5f5744d8ddbdc39fce7ef29e5965cc3d1 66308
libkadm5clnt-mit9_1.12.1+dfsg-7_amd64.deb
55fe4ccff82f3f6d643cebc8df3c9c580710ef2c 111562
libk5crypto3_1.12.1+dfsg-7_amd64.deb
247eeab287e7d4b5c05712f75ea7a715a14b89d6 66414
libkdb5-7_1.12.1+dfsg-7_amd64.deb
253fa721926255da1f08b7f17aabf80552a6a0c6 57246
libkrb5support0_1.12.1+dfsg-7_amd64.deb
6265f084a355dcde350c8bdc7ff61a1e02c32a1a 51094 libkrad0_1.12.1+dfsg-7_amd64.deb
6d4a824e35cc8c2b442ab0f7a813152a6fa41c07 54422
krb5-gss-samples_1.12.1+dfsg-7_amd64.deb
62fbf9ae73d1f177f84e1865f6362784cbdef6f3 41528
libkrad-dev_1.12.1+dfsg-7_amd64.deb
Checksums-Sha256:
2da2ee7c3ff922e824b93bdab11adec5b121abf89157140f0a39b62ef6d13fb8 2684
krb5_1.12.1+dfsg-7.dsc
193827082c9b8536a69346e090c30414bd42ca1cf32bd53df530c7cd41139975 101132
krb5_1.12.1+dfsg-7.debian.tar.xz
385d3c2e6552a1b6c9cf8bd1626c91cc9625f913e3537464ee7e9407ed688049 4691218
krb5-doc_1.12.1+dfsg-7_all.deb
fd34098c90d6d70dd8cef3e0a9a08460a1d28ae81dd29248845ab8eb05d1fe3d 2647968
krb5-locales_1.12.1+dfsg-7_all.deb
5fa86eef9f426ba5bc7c8380d72852cd94417942003c38b73a450adc02029766 135254
krb5-user_1.12.1+dfsg-7_amd64.deb
7d265c8135e55ed51d01b914407ae4b75bc14d6a4fb12147947289301b4ae125 205616
krb5-kdc_1.12.1+dfsg-7_amd64.deb
3318543375ad2001acdb308834108b3c27177cda6450299c1adeb6413b2e0009 109004
krb5-kdc-ldap_1.12.1+dfsg-7_amd64.deb
c827cb411269ec966f4b1fe44ca0ad40cb0a5084b2195a4e0d8df5c235ed74f3 114062
krb5-admin-server_1.12.1+dfsg-7_amd64.deb
6c845dc49841dc1d8e5298eec1f584bd292116d157b8edc4cc78d0ea4c5e4454 140694
krb5-multidev_1.12.1+dfsg-7_amd64.deb
ede8cfe27754d2a35602cd1739fa0d79a048216bf0681fa722696e43e9ad53f2 44104
libkrb5-dev_1.12.1+dfsg-7_amd64.deb
e12d765f75c1ff9a5d476900b510c482821f215ec7cef0bdf3e00c3686168209 1406244
libkrb5-dbg_1.12.1+dfsg-7_amd64.deb
a86be3cf34b1766c6799b12c17996cf5646e968ca658952030571e1675016540 81708
krb5-pkinit_1.12.1+dfsg-7_amd64.deb
9c72fa088d0bd223936077e4f57e8de8e8add58f3d19181e43fdd31717e55f37 46610
krb5-otp_1.12.1+dfsg-7_amd64.deb
da44b851ca6eb8827f467a47bb5d83313858f6d75ab787f38603d1510217f743 297894
libkrb5-3_1.12.1+dfsg-7_amd64.deb
3cdb4723a232f2653dc311c13fe8942169ae3ed1f20362f64b130ba54de27e18 147262
libgssapi-krb5-2_1.12.1+dfsg-7_amd64.deb
9178bb48db40799d52093a177b6cf21de182b6bb0763bcccb22913501db7c415 84414
libgssrpc4_1.12.1+dfsg-7_amd64.deb
43c0aade2133d0287b0aa21d9fba858fdf400471fa8a426a805135fe464f67cf 80736
libkadm5srv-mit9_1.12.1+dfsg-7_amd64.deb
c28c4efc0eeb69a1650eac99d8d41add531ff7b46b5fbded80f5268387addaa1 66308
libkadm5clnt-mit9_1.12.1+dfsg-7_amd64.deb
3414b467f39ac27268f61a45e2beb568ef995c425f4122265c0afc9290a0669b 111562
libk5crypto3_1.12.1+dfsg-7_amd64.deb
e80cf5e435aca9a4926f145195ef1622eed21d34933e47d44dae5cc1ac018cc1 66414
libkdb5-7_1.12.1+dfsg-7_amd64.deb
4d593fe594013844388cb06e6ad19763ae43257076b4fd8f48a4e8a8c9588856 57246
libkrb5support0_1.12.1+dfsg-7_amd64.deb
19b3e7ccebe21c419d33d92ff045263bb1239e25fdf2f00d1270b930ae2821ad 51094
libkrad0_1.12.1+dfsg-7_amd64.deb
bdda721fbbaca8000e36e14cb488d6e92b168829844034a49e8e56c38551a011 54422
krb5-gss-samples_1.12.1+dfsg-7_amd64.deb
cb3ce8ea9279b469685e6f0274b2c809c583d5970104371164bf6375fef847bc 41528
libkrad-dev_1.12.1+dfsg-7_amd64.deb
Files:
10c61fdfc3f2895a1b205eb68f829924 4691218 doc optional
krb5-doc_1.12.1+dfsg-7_all.deb
6ebfaf41048230d70edfe6e25fdf71e4 2647968 localization standard
krb5-locales_1.12.1+dfsg-7_all.deb
a2cb7ea29c7c8b7ba3e27456955839cb 135254 net optional
krb5-user_1.12.1+dfsg-7_amd64.deb
27477aa13309965919144a54ef9132f7 205616 net optional
krb5-kdc_1.12.1+dfsg-7_amd64.deb
624760dddaebd4b2768695f120063c89 109004 net extra
krb5-kdc-ldap_1.12.1+dfsg-7_amd64.deb
26984aa049085e52ce4ac524aba3d435 114062 net optional
krb5-admin-server_1.12.1+dfsg-7_amd64.deb
263458d0dff6ce512814572aad58e4a8 140694 libdevel optional
krb5-multidev_1.12.1+dfsg-7_amd64.deb
95ed7181e2ca7d7fbb19cd78e4b3a0a1 44104 libdevel extra
libkrb5-dev_1.12.1+dfsg-7_amd64.deb
3f54f9359d8116a98cf04a54aac31ee8 1406244 debug extra
libkrb5-dbg_1.12.1+dfsg-7_amd64.deb
b7b1965905c20857fa3b86bc5acf0570 81708 net extra
krb5-pkinit_1.12.1+dfsg-7_amd64.deb
559fcd4f28b29e838b94c9f27efd3250 46610 net extra
krb5-otp_1.12.1+dfsg-7_amd64.deb
e2d36d02e5a3ff10a6d0af7321ef899e 297894 libs standard
libkrb5-3_1.12.1+dfsg-7_amd64.deb
fd69398c304d10cb2bd401fc180083e2 147262 libs standard
libgssapi-krb5-2_1.12.1+dfsg-7_amd64.deb
5237dc1fc95ea70d6691e08660a487cc 84414 libs standard
libgssrpc4_1.12.1+dfsg-7_amd64.deb
d87bae8fcdb344b0f97eba3022f7a83a 80736 libs standard
libkadm5srv-mit9_1.12.1+dfsg-7_amd64.deb
456a68bbedd0bd0d66e966352e402451 66308 libs standard
libkadm5clnt-mit9_1.12.1+dfsg-7_amd64.deb
42d1b43699cbe32ea4880954a455e203 111562 libs standard
libk5crypto3_1.12.1+dfsg-7_amd64.deb
589b290c92de53108581e88dc571352a 66414 libs standard
libkdb5-7_1.12.1+dfsg-7_amd64.deb
f4bac065272fdd491dcb9079c820371a 57246 libs standard
libkrb5support0_1.12.1+dfsg-7_amd64.deb
b977c6003af8d02884b13114cc4a5ecb 51094 libs standard
libkrad0_1.12.1+dfsg-7_amd64.deb
97f598103a57a119e3d4068fbbaa3f62 54422 net extra
krb5-gss-samples_1.12.1+dfsg-7_amd64.deb
2fd82d4065d740a9265468bd0ff6a2c9 41528 libdevel extra
libkrad-dev_1.12.1+dfsg-7_amd64.deb
e4a01cdd9c0273992b565b6a444e548a 2684 net standard krb5_1.12.1+dfsg-7.dsc
ac72a3bb7873d047ec309083f45b476e 101132 net standard
krb5_1.12.1+dfsg-7.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlPlGbcACgkQ/I12czyGJg/47ACgvBIkF8kGZbCYKOGbdqFVTrnC
DgsAn1SMIvjZkw8vSHmpi8+dQL+YUrYD
=iwSF
-----END PGP SIGNATURE-----
--- End Message ---
