-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 19 Jun 2026 08:30:16 -0600
Source: krb5
Architecture: source
Version: 1.22.1-3
Distribution: unstable
Urgency: medium
Maintainer: Sam Hartman <[email protected]>
Changed-By: Sam Hartman <[email protected]>
Closes: 1128877 1138466 1139821
Changes:
 krb5 (1.22.1-3) unstable; urgency=medium
 .
   [ Emmanuel Arias ]
   * CVE-2026-11850: Prevent read overrun in libkdb_ldap (Closes: #1139821).
 .
   [ Sam Hartman ]
   * Fix C23 use of strchr, Closes: #1128877
   * Remove lintian tag that ldap plugin is linked against libc6; no longer 
needed
   * Upstream patch for OpenSSL 4.0 compatibility, Closes: #1138466
   * Upstream commit f5bbfa4 to use openssl facilities to verify certificates; 
needed to avoid discarding const qualifier from Openssl 4.0 patch
Checksums-Sha1:
 845bb8aaa01fff2fc5fb696c6d662d3f0ffbb32e 3397 krb5_1.22.1-3.dsc
 1d8d7d0ebabe58a4c8fd73e994b9185fddeb70d6 111476 krb5_1.22.1-3.debian.tar.xz
 a0b70184d6328b4ef43b7cd07566dcc6f67bc8a0 5430 krb5_1.22.1-3_source.buildinfo
Checksums-Sha256:
 b619af9a52f00c4888e1f53f38d5e147e8c518d1c5b0cda120873fa4ebd4ea77 3397 
krb5_1.22.1-3.dsc
 519ad7537260ebc450a678b38f00c8deaf0e05d848d0e5cfeef1ddb154663ba8 111476 
krb5_1.22.1-3.debian.tar.xz
 7920ad149020edb369818ac43505bcf704974c5dadb99e9ccbfe454863d9686f 5430 
krb5_1.22.1-3_source.buildinfo
Files:
 3730d9a46e9231b4d200afaab70ff91b 3397 net optional krb5_1.22.1-3.dsc
 43ba1f462c405922f93d52df62f9d3dd 111476 net optional 
krb5_1.22.1-3.debian.tar.xz
 17f3f77631ce2425aa43ae8752a25f1d 5430 net optional 
krb5_1.22.1-3_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQSj2jRwbAdKzGY/4uAsbEw8qDeGdAUCajVT1wAKCRAsbEw8qDeG
dHx3AQDDJPFs5+Ydjhj6Vo7s4YSNZb1Z2sR42GzteXd4/qYEtgD+PGJW+prLvCa1
JVoMZ0eUAsdEMNEagaUDh0kMJQBp7wQ=
=eZWN
-----END PGP SIGNATURE-----

Attachment: pgpO2mFACFCcw.pgp
Description: PGP signature

Reply via email to