Your message dated Wed, 16 Mar 2011 15:16:53 +0000
with message-id <[email protected]>
and subject line Bug#618517: fixed in krb5 1.8.3+dfsg-6
has caused the Debian Bug report #618517,
regarding krb5: CVE-2011-0284 kdc double-free
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
618517: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=618517
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
package: krb5
version: 1.8.3+dfsg-4
severity: serious
tags: security
an new security advisory for krb5 has been issued:
http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-003.txt
--- End Message ---
--- Begin Message ---
Source: krb5
Source-Version: 1.8.3+dfsg-6
We believe that the bug you reported is fixed in the latest version of
krb5, which is due to be installed in the Debian FTP archive:
krb5-admin-server_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/krb5-admin-server_1.8.3+dfsg-6_amd64.deb
krb5-doc_1.8.3+dfsg-6_all.deb
to main/k/krb5/krb5-doc_1.8.3+dfsg-6_all.deb
krb5-kdc-ldap_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/krb5-kdc-ldap_1.8.3+dfsg-6_amd64.deb
krb5-kdc_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/krb5-kdc_1.8.3+dfsg-6_amd64.deb
krb5-multidev_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/krb5-multidev_1.8.3+dfsg-6_amd64.deb
krb5-pkinit_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/krb5-pkinit_1.8.3+dfsg-6_amd64.deb
krb5-user_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/krb5-user_1.8.3+dfsg-6_amd64.deb
krb5_1.8.3+dfsg-6.diff.gz
to main/k/krb5/krb5_1.8.3+dfsg-6.diff.gz
krb5_1.8.3+dfsg-6.dsc
to main/k/krb5/krb5_1.8.3+dfsg-6.dsc
libgssapi-krb5-2_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libgssapi-krb5-2_1.8.3+dfsg-6_amd64.deb
libgssrpc4_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libgssrpc4_1.8.3+dfsg-6_amd64.deb
libk5crypto3_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libk5crypto3_1.8.3+dfsg-6_amd64.deb
libkadm5clnt-mit7_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libkadm5clnt-mit7_1.8.3+dfsg-6_amd64.deb
libkadm5srv-mit7_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libkadm5srv-mit7_1.8.3+dfsg-6_amd64.deb
libkdb5-4_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libkdb5-4_1.8.3+dfsg-6_amd64.deb
libkrb5-3_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libkrb5-3_1.8.3+dfsg-6_amd64.deb
libkrb5-dbg_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libkrb5-dbg_1.8.3+dfsg-6_amd64.deb
libkrb5-dev_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libkrb5-dev_1.8.3+dfsg-6_amd64.deb
libkrb53_1.8.3+dfsg-6_all.deb
to main/k/krb5/libkrb53_1.8.3+dfsg-6_all.deb
libkrb5support0_1.8.3+dfsg-6_amd64.deb
to main/k/krb5/libkrb5support0_1.8.3+dfsg-6_amd64.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Sam Hartman <[email protected]> (supplier of updated krb5 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 16 Mar 2011 10:10:55 -0400
Source: krb5
Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev
libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc libkrb5-3 libgssapi-krb5-2
libgssrpc4 libkadm5srv-mit7 libkadm5clnt-mit7 libk5crypto3 libkdb5-4
libkrb5support0 libkrb53
Architecture: source all amd64
Version: 1.8.3+dfsg-6
Distribution: unstable
Urgency: low
Maintainer: Sam Hartman <[email protected]>
Changed-By: Sam Hartman <[email protected]>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-doc - Documentation for MIT Kerberos
krb5-kdc - MIT Kerberos key server (KDC)
krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
krb5-multidev - Development files for MIT Kerberos without Heimdal conflict
krb5-pkinit - PKINIT plugin for MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC
libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library
libkadm5clnt-mit7 - MIT Kerberos runtime libraries - Administration Clients
libkadm5srv-mit7 - MIT Kerberos runtime libraries - KDC and Admin Server
libkdb5-4 - MIT Kerberos runtime libraries - Kerberos database
libkrb5-3 - MIT Kerberos runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb53 - transitional package for MIT Kerberos libraries
libkrb5support0 - MIT Kerberos runtime libraries - Support library
Closes: 584282 618517
Changes:
krb5 (1.8.3+dfsg-6) unstable; urgency=low
.
* Fix double free with pkinit on KDC, CVE-2011-0284, Closes: #618517
* Updated Danish debconf translations, thanks Joe Dalton, Closes:
#584282
Checksums-Sha1:
f19483716f0398cb7122452608cc475d6684fcc6 1578 krb5_1.8.3+dfsg-6.dsc
7a89450a8220435c53f651e8fd2c62789ceb5b96 105087 krb5_1.8.3+dfsg-6.diff.gz
d4d7aa9f7fef9a8c7e5d0e98dde39efaf0bdcd4c 2255044 krb5-doc_1.8.3+dfsg-6_all.deb
5ea235de36d98d5acaae736bd9d321a68e684de0 1373050 libkrb53_1.8.3+dfsg-6_all.deb
99ea3967310f71c899523fa2e68601138e1918f6 138786
krb5-user_1.8.3+dfsg-6_amd64.deb
8b4860de9da49e9be74fb30d7437fd31b3444438 219288 krb5-kdc_1.8.3+dfsg-6_amd64.deb
3fdaa5c4591eaacde500f11d9fe9c48d1d78f7d4 118076
krb5-kdc-ldap_1.8.3+dfsg-6_amd64.deb
a8cc1f2494666b7d88df556044a4d7966ccf1ea8 113316
krb5-admin-server_1.8.3+dfsg-6_amd64.deb
8785833412e420e92f3b34113f4d5ffe9de25958 103610
krb5-multidev_1.8.3+dfsg-6_amd64.deb
78c261f869bd94be040f154fda0ef4564803d3ec 37392
libkrb5-dev_1.8.3+dfsg-6_amd64.deb
09b64f3f7fce8294e0fffeabd042dca6b2a1571b 1628526
libkrb5-dbg_1.8.3+dfsg-6_amd64.deb
5cc7f7592d931f8c9525f856776f7913395ca58d 77976
krb5-pkinit_1.8.3+dfsg-6_amd64.deb
40a0ae2b9ed765a5d5b309dd99f770a3aea7fba8 374722
libkrb5-3_1.8.3+dfsg-6_amd64.deb
90a1105b934247856a42a250a20fcd075ff1e9ac 130580
libgssapi-krb5-2_1.8.3+dfsg-6_amd64.deb
68cb0ed12535ee38c9a32c57c72d9d0acb848c47 84194
libgssrpc4_1.8.3+dfsg-6_amd64.deb
54c87e4c696db237412392c86d95ecca83eb8126 78432
libkadm5srv-mit7_1.8.3+dfsg-6_amd64.deb
cbbaf54585e23ad5858bf54380fbff6912ef753c 64512
libkadm5clnt-mit7_1.8.3+dfsg-6_amd64.deb
b57edee9ed2f2be2a087692973d9d53f99e8e155 106320
libk5crypto3_1.8.3+dfsg-6_amd64.deb
22610088daaa45a3c9109ab29078b7b411bea0f7 64004 libkdb5-4_1.8.3+dfsg-6_amd64.deb
3c67413e64d027f1c1748bebdfbd2d608958ae17 45962
libkrb5support0_1.8.3+dfsg-6_amd64.deb
Checksums-Sha256:
a66cf53ec40bb634b63a8cdd4c2552c65d2d1c55b598f0c881e7c5e481b2c5e1 1578
krb5_1.8.3+dfsg-6.dsc
10089c321a12375526a7ac943b7a04280aa4543ea3b7391c8e37d5d2a9cfed81 105087
krb5_1.8.3+dfsg-6.diff.gz
ddd828da31ee668be765bc11ad32725795b575cfddcc04b39651f58e40b00929 2255044
krb5-doc_1.8.3+dfsg-6_all.deb
3d241760ecef1853807c43ce508f21747a09b05f7bf02a766a81026c80fabea2 1373050
libkrb53_1.8.3+dfsg-6_all.deb
8a821533f201a328aa0175c5a4346bc9dfa869cc408352f3cac3d65b08f17bc3 138786
krb5-user_1.8.3+dfsg-6_amd64.deb
c54dc73cd867caa0369b7b43a314f5175cf6ddce01053b6f560f96b399173081 219288
krb5-kdc_1.8.3+dfsg-6_amd64.deb
eec3a5abd1de5f4e1aa5cc0d4a9daba767444ecb604540285906cde8a2bff0de 118076
krb5-kdc-ldap_1.8.3+dfsg-6_amd64.deb
7ff6223245d618140f8446186d474b742e5c7abb3aec2d01fed2ec5bf672abe5 113316
krb5-admin-server_1.8.3+dfsg-6_amd64.deb
369e4630b9f1a8258a95212b9d78a4e2eab93d5407003f1b50f5d34240a15262 103610
krb5-multidev_1.8.3+dfsg-6_amd64.deb
b6e765d1f6bc30bb02eb9d3d2a62579102842452c72a81c9aa10bf68494f8c4b 37392
libkrb5-dev_1.8.3+dfsg-6_amd64.deb
4b429503f7a510eac036bced29da852a39cc690952e1ef45e74e7851368d895d 1628526
libkrb5-dbg_1.8.3+dfsg-6_amd64.deb
ef6b41b2f4fbad3c827fbe50dd6859751f4c7a0f7d8e3bfbf4d642aa54a44445 77976
krb5-pkinit_1.8.3+dfsg-6_amd64.deb
958db0d326bbdb414fbbd38a348e9dc5083d96e2650a51020d76186090c0f54b 374722
libkrb5-3_1.8.3+dfsg-6_amd64.deb
0a8cde0524c2a28aae7168b2a34056c3e1165f7d79d76d7871c375866c6a4ccf 130580
libgssapi-krb5-2_1.8.3+dfsg-6_amd64.deb
45af06aa78a7d6ffdf3b5b65dfa966044748d527d693eaa3074abfed86866bf8 84194
libgssrpc4_1.8.3+dfsg-6_amd64.deb
4a53a8a9925d6a2f8d0ca56e57b01bf87779208e9d1d5f3c63dabd07d378a35a 78432
libkadm5srv-mit7_1.8.3+dfsg-6_amd64.deb
d0ea774e507489d61ab3241776ca30a3d884a8f6b914b8512cc1b3031b82215f 64512
libkadm5clnt-mit7_1.8.3+dfsg-6_amd64.deb
f9f56949a422c6a317a579fffe67602d337524ed038e17222776e65f27bdad18 106320
libk5crypto3_1.8.3+dfsg-6_amd64.deb
8ac8bb2520b8afc7fbadaae41abcc2c03afe3857af35740f1f5990818dded5ab 64004
libkdb5-4_1.8.3+dfsg-6_amd64.deb
3e9dce02ad330973267036fb905bbf3683ec74bf6fb27ef2a16918e5919e050d 45962
libkrb5support0_1.8.3+dfsg-6_amd64.deb
Files:
23b2bb2891b88b744f108699c99c5ad2 1578 net standard krb5_1.8.3+dfsg-6.dsc
667c8d0f83e6f03432e495d2843c7b95 105087 net standard krb5_1.8.3+dfsg-6.diff.gz
2344f64618ed12bdc3966b19bfa47c29 2255044 doc optional
krb5-doc_1.8.3+dfsg-6_all.deb
1f45071afba4bcb6938db7486eac2d4e 1373050 oldlibs extra
libkrb53_1.8.3+dfsg-6_all.deb
e4ab1ef20724af31251ac7c7667f154e 138786 net optional
krb5-user_1.8.3+dfsg-6_amd64.deb
4cf6119d6d8c4e74a8ae4b8f8ee9a2d1 219288 net optional
krb5-kdc_1.8.3+dfsg-6_amd64.deb
191a9e02ca411a530e5d0a48ba4f8154 118076 net extra
krb5-kdc-ldap_1.8.3+dfsg-6_amd64.deb
f94afd9e504fa91f92451b8768a5165d 113316 net optional
krb5-admin-server_1.8.3+dfsg-6_amd64.deb
bc154661e219bec906ae69bf468446e4 103610 libdevel optional
krb5-multidev_1.8.3+dfsg-6_amd64.deb
50ab7c569895f29c3c13e9b7c04c682e 37392 libdevel extra
libkrb5-dev_1.8.3+dfsg-6_amd64.deb
8948c6602e41635c594694c439376fe3 1628526 debug extra
libkrb5-dbg_1.8.3+dfsg-6_amd64.deb
f0035918c0076136fbadea6dfc15ef32 77976 net extra
krb5-pkinit_1.8.3+dfsg-6_amd64.deb
e039590106007be507ffa1b2c7245ec2 374722 libs standard
libkrb5-3_1.8.3+dfsg-6_amd64.deb
dbcc0ea0e54570b0a766ed53aef1328d 130580 libs standard
libgssapi-krb5-2_1.8.3+dfsg-6_amd64.deb
35a5ee29cbc400f326f16653113ec4c3 84194 libs standard
libgssrpc4_1.8.3+dfsg-6_amd64.deb
241801d182acbb552423b4a17e01278a 78432 libs standard
libkadm5srv-mit7_1.8.3+dfsg-6_amd64.deb
78aa0f01c0eeef1a65bdfac64bcbcee1 64512 libs standard
libkadm5clnt-mit7_1.8.3+dfsg-6_amd64.deb
5f30d2590706b117b93a3a89e3bb151e 106320 libs standard
libk5crypto3_1.8.3+dfsg-6_amd64.deb
fcbe6ebf810f6e0058bb5b8cec0839a8 64004 libs standard
libkdb5-4_1.8.3+dfsg-6_amd64.deb
8d95b087a8d785fced47ad0b5928c7ed 45962 libs standard
libkrb5support0_1.8.3+dfsg-6_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAk2AxvsACgkQ/I12czyGJg9yZgCfWLb+1XnaRkhzfkOvfs7mKblz
0iQAmwYKcvoMeUe2Crlf52Bm8MsYBy9Q
=z23z
-----END PGP SIGNATURE-----
--- End Message ---