Your message dated Tue, 12 Aug 2014 22:07:00 +0000
with message-id <[email protected]>
and subject line Bug#757416: fixed in krb5 1.10.1+dfsg-5+deb7u2
has caused the Debian Bug report #757416,
regarding CVE-2014-4345 in krb5-kdc-ldap: buffer overrun in kadmind
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
757416: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=757416
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: krb5-kdc-ldap
Version: 1.8.3+dfsg-4squeeze7
Tags: security
Upstream has committed a fix for CVE-2014-4345 to their git repo; we
should take it as well, and probably push it back into the -security repos
for stable and co.
I am preparing uploads.
-Ben
--- End Message ---
--- Begin Message ---
Source: krb5
Source-Version: 1.10.1+dfsg-5+deb7u2
We believe that the bug you reported is fixed in the latest version of
krb5, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Benjamin Kaduk <[email protected]> (supplier of updated krb5 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Fri, 08 Aug 2014 12:12:09 -0400
Source: krb5
Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev
libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc libkrb5-3 libgssapi-krb5-2
libgssrpc4 libkadm5srv-mit8 libkadm5clnt-mit8 libk5crypto3 libkdb5-6
libkrb5support0 krb5-gss-samples krb5-locales
Architecture: source all amd64
Version: 1.10.1+dfsg-5+deb7u2
Distribution: wheezy-security
Urgency: high
Maintainer: Sam Hartman <[email protected]>
Changed-By: Benjamin Kaduk <[email protected]>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-doc - Documentation for MIT Kerberos
krb5-gss-samples - MIT Kerberos GSS Sample applications
krb5-kdc - MIT Kerberos key server (KDC)
krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
krb5-locales - Internationalization support for MIT Kerberos
krb5-multidev - Development files for MIT Kerberos without Heimdal conflict
krb5-pkinit - PKINIT plugin for MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC
libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library
libkadm5clnt-mit8 - MIT Kerberos runtime libraries - Administration Clients
libkadm5srv-mit8 - MIT Kerberos runtime libraries - KDC and Admin Server
libkdb5-6 - MIT Kerberos runtime libraries - Kerberos database
libkrb5-3 - MIT Kerberos runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb5support0 - MIT Kerberos runtime libraries - Support library
Closes: 753624 753625 755520 755521 757416
Changes:
krb5 (1.10.1+dfsg-5+deb7u2) stable-security; urgency=high
.
* Apply upstream patches for several issues:
- CVE-2014-4341: denial of service due to improper GSSAPI message
validation, Closes: #753624
- CVE-2014-4342: denial of service due to improper GSSAPI message
validation, Closes: #753625
- CVE-2014-4343: double-free in SPNEGO initiator during renegotiation,
Closes: #755520
- CVE-2014-4344: NULL dereference in SPNEGO acceptor, Closes: #755521
- CVE-2014-4345 [MITKRB5-SA-2014-001]: buffer overrun in kadmind with
LDAP backend, Closes: #757416
Checksums-Sha1:
f527ead4f657368dac61fd1d85c9d3cdb58af549 2298 krb5_1.10.1+dfsg-5+deb7u2.dsc
9a793ea3e2f67c0206a41bb376d90cc4209835c9 138587
krb5_1.10.1+dfsg-5+deb7u2.debian.tar.gz
5ca44472ca56debafd4106a4347e3a76bc229e14 2668294
krb5-doc_1.10.1+dfsg-5+deb7u2_all.deb
8b9e8c883260dee1854f04ec98a9af0e1478a002 1503172
krb5-locales_1.10.1+dfsg-5+deb7u2_all.deb
2f968a1382b3a884f96a3ef981e1d279f640513a 153952
krb5-user_1.10.1+dfsg-5+deb7u2_amd64.deb
55aa9eaab5865249fc5df82271f0da94a766ba60 225120
krb5-kdc_1.10.1+dfsg-5+deb7u2_amd64.deb
9888be6c8dfc96656390113f40e382fa6440d53c 120928
krb5-kdc-ldap_1.10.1+dfsg-5+deb7u2_amd64.deb
ded386cc280c2ed3e2e07aa5fc6b0f45f9a375fe 123136
krb5-admin-server_1.10.1+dfsg-5+deb7u2_amd64.deb
56c8c197fd2511ba7c72b20d66a78087351dc24d 153496
krb5-multidev_1.10.1+dfsg-5+deb7u2_amd64.deb
d5a5889a22aafb7c963d623f9f6df78d6d0b261a 39748
libkrb5-dev_1.10.1+dfsg-5+deb7u2_amd64.deb
b03720d0aca68b463864279fdddc2651413585e2 2203416
libkrb5-dbg_1.10.1+dfsg-5+deb7u2_amd64.deb
6a7aaa11ed8ff495d0c781c12848758f14cb9708 82468
krb5-pkinit_1.10.1+dfsg-5+deb7u2_amd64.deb
2fb8ba75fecaa9813bf664cbdbca4c7cd4ddd6a9 393316
libkrb5-3_1.10.1+dfsg-5+deb7u2_amd64.deb
6b66b1e114de0739f7e3acc850689686bcf4b458 148158
libgssapi-krb5-2_1.10.1+dfsg-5+deb7u2_amd64.deb
de9d88b12738f2f2dc3e4a4c8ba5551cb85722b9 87652
libgssrpc4_1.10.1+dfsg-5+deb7u2_amd64.deb
81ebe1838ca19bfdbc87f7806db7fa45b174bc46 84924
libkadm5srv-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb
a852e5c56a304b9c4fb1e7e4445e5030b5a1f11d 68024
libkadm5clnt-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb
e7dd9ab17cf00b46e80054925b7a66659b8457d4 112664
libk5crypto3_1.10.1+dfsg-5+deb7u2_amd64.deb
e68514bf88b3407131bd483cb88e1b5e15b104ec 67064
libkdb5-6_1.10.1+dfsg-5+deb7u2_amd64.deb
cf8d7923a5b9f106ac96368605975f0232203f3c 49824
libkrb5support0_1.10.1+dfsg-5+deb7u2_amd64.deb
c45d2981625c208b860d33e5c5d4e97368b92751 51836
krb5-gss-samples_1.10.1+dfsg-5+deb7u2_amd64.deb
Checksums-Sha256:
9a5ea7c5a229cb81d4b7a0da9dfa1c8b827bac1211fe87be2597133b17e5e984 2298
krb5_1.10.1+dfsg-5+deb7u2.dsc
4dfa2a5eeafc5682d7e646b8042cc6928f64299904d1ef2b3627cc1744367102 138587
krb5_1.10.1+dfsg-5+deb7u2.debian.tar.gz
6f4decaaa0962548810e50eb0667132b809869b26dc18580d88027786d7c021c 2668294
krb5-doc_1.10.1+dfsg-5+deb7u2_all.deb
678639a04d89a1bf8734bcf60a4adfa65a8bbf1bf1cafc092b235100edd89f82 1503172
krb5-locales_1.10.1+dfsg-5+deb7u2_all.deb
47a1fc3a52f3201c59b37d5bd5faa7a2f99ff138b8ba923d729ac2eaecf94331 153952
krb5-user_1.10.1+dfsg-5+deb7u2_amd64.deb
33224b5a35d55d6e19d7507728cf953b80d0f76c086c038593bdf065c641c63a 225120
krb5-kdc_1.10.1+dfsg-5+deb7u2_amd64.deb
ecdb6de9af054c9c7d660e030c912bd5782ad82664ce2bd6e294f82e0f227845 120928
krb5-kdc-ldap_1.10.1+dfsg-5+deb7u2_amd64.deb
0914cbd16d5eb72672d138b18c7472ea10232b4133ad352df54f1389d5e3e24c 123136
krb5-admin-server_1.10.1+dfsg-5+deb7u2_amd64.deb
354ec830b64b33f750ce21b10ec84238d62847a4601b5392cab0da95b76d8d5d 153496
krb5-multidev_1.10.1+dfsg-5+deb7u2_amd64.deb
f096ae73a38474efed662f8871a3bad5edb3d412e59fa413e9bec6c790b0d99a 39748
libkrb5-dev_1.10.1+dfsg-5+deb7u2_amd64.deb
4f5ce77e3ae8d228d440274279223618900084248a3ff436e78aaaeb6032ec40 2203416
libkrb5-dbg_1.10.1+dfsg-5+deb7u2_amd64.deb
34314fc5f38c8d36a4f777d1d2c9d88d07df7628b1887b0005caa4252db5b13c 82468
krb5-pkinit_1.10.1+dfsg-5+deb7u2_amd64.deb
d9e8b366d824c9ea3bfa36a6085d769ed28c2475a5a4ba0f84db8f4c376ac552 393316
libkrb5-3_1.10.1+dfsg-5+deb7u2_amd64.deb
d1921edda9418569528f85f87f1474549a6f1506729c5d46918036fefc5122d0 148158
libgssapi-krb5-2_1.10.1+dfsg-5+deb7u2_amd64.deb
43462f2e39e599022ef66ee16c48ef647d414b61ba26533e05b5360a0e024633 87652
libgssrpc4_1.10.1+dfsg-5+deb7u2_amd64.deb
4cac7e9d7d4ed2e3ade19c5f5137f3c55f0d369ff52409e615d85411b3aa1d12 84924
libkadm5srv-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb
6ce7b66c69a2403e2f36498e926a785f8bcbe67876c4e128eeed1877a1f2bd12 68024
libkadm5clnt-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb
9b8baca18afb7d97d6de7fc577530c3efaa45901979b16bd862341b18a46e9c6 112664
libk5crypto3_1.10.1+dfsg-5+deb7u2_amd64.deb
4e144383383bbf25b1ac311a273c096ff1a47e61f530f13c5dff06f712521ef3 67064
libkdb5-6_1.10.1+dfsg-5+deb7u2_amd64.deb
98e167707e7b420a5fba63c0c368d849efe32895c5f5acc8a3056def50e878ea 49824
libkrb5support0_1.10.1+dfsg-5+deb7u2_amd64.deb
7ca8df14fa4ed2bc34025932b120da2cfd6a289609663818ff0838a77f2aedcf 51836
krb5-gss-samples_1.10.1+dfsg-5+deb7u2_amd64.deb
Files:
46e987369fe06081bf64b0b18014a5b1 2298 net standard
krb5_1.10.1+dfsg-5+deb7u2.dsc
a1759568c95f81a9937ff20cabcdd268 138587 net standard
krb5_1.10.1+dfsg-5+deb7u2.debian.tar.gz
52cd90525d8a542cca6b78e0455aa3cb 2668294 doc optional
krb5-doc_1.10.1+dfsg-5+deb7u2_all.deb
d885872c317280b4195c9d3e2b87c0fc 1503172 localization standard
krb5-locales_1.10.1+dfsg-5+deb7u2_all.deb
b52b0a2fe2fd2a7507fa59db5b12d8a1 153952 net optional
krb5-user_1.10.1+dfsg-5+deb7u2_amd64.deb
2bcfadfe1ed007f396577f12ebe8f0b8 225120 net optional
krb5-kdc_1.10.1+dfsg-5+deb7u2_amd64.deb
218ac08f738bc6a3f800d77d6b2aeda4 120928 net extra
krb5-kdc-ldap_1.10.1+dfsg-5+deb7u2_amd64.deb
782e680ab21f040a4b341184b5b9ebf7 123136 net optional
krb5-admin-server_1.10.1+dfsg-5+deb7u2_amd64.deb
98b229beff22debe70d1deb61f965f23 153496 libdevel optional
krb5-multidev_1.10.1+dfsg-5+deb7u2_amd64.deb
42bb475b1466c14eef228bf2bf6066f3 39748 libdevel extra
libkrb5-dev_1.10.1+dfsg-5+deb7u2_amd64.deb
f390d9209d95149a215814e27609e5b2 2203416 debug extra
libkrb5-dbg_1.10.1+dfsg-5+deb7u2_amd64.deb
713f0168228d3a11814cd1dadaaf4963 82468 net extra
krb5-pkinit_1.10.1+dfsg-5+deb7u2_amd64.deb
0892bc9cddc04a7ffb3c4d7d51a7d9bd 393316 libs standard
libkrb5-3_1.10.1+dfsg-5+deb7u2_amd64.deb
d2fac49a229ff29e0242f536b092c332 148158 libs standard
libgssapi-krb5-2_1.10.1+dfsg-5+deb7u2_amd64.deb
00986807a15ac2564cf9203b69fc1874 87652 libs standard
libgssrpc4_1.10.1+dfsg-5+deb7u2_amd64.deb
1add33fb34e8a939aab9d949a8c6f0f1 84924 libs standard
libkadm5srv-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb
9b6fc1d8519c5b2bccc64a173e8d169f 68024 libs standard
libkadm5clnt-mit8_1.10.1+dfsg-5+deb7u2_amd64.deb
52f684e84a9bfd7f3aa061fbb88c1fd0 112664 libs standard
libk5crypto3_1.10.1+dfsg-5+deb7u2_amd64.deb
1226b6146886e1fe8439b437f1fe8f05 67064 libs standard
libkdb5-6_1.10.1+dfsg-5+deb7u2_amd64.deb
b993adffe62bda77734edef9c7b8202e 49824 libs standard
libkrb5support0_1.10.1+dfsg-5+deb7u2_amd64.deb
8894dccce50e13e570ec0de222c6dbfb 51836 net extra
krb5-gss-samples_1.10.1+dfsg-5+deb7u2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlPlK78ACgkQ/I12czyGJg9FswCgp98E+3bbluhqOzH7fR6wdQji
JEgAn029K+w5t4nSFFKSky1oBdcEXaAV
=g/Hv
-----END PGP SIGNATURE-----
--- End Message ---
