Salvatore Bonaccorso <[email protected]> writes:
> Source: heimdal
> Version: 7.7.0+dfsg-2
> Severity: grave
> Tags: security upstream
> Justification: user security hole
> X-Debbugs-Cc: [email protected], Debian Security Team
> <[email protected]>
> Control: found -1 7.5.0+dfsg-3
Does this need to be grave? Considering it was considered a minor issue
everywhere else, maybe not?
I attempted to fix this for unstable - and committed changed to Debian
git repo, but:
* Patch breaks compilation on latest Heimdal release:
krb5tgs.c: In function ‘tgs_build_reply’:
krb5tgs.c:1665:2: warning: implicit declaration of function ‘_kdc_set_e_text’
[-Wimplicit-function-declaration]
1665 | _kdc_set_e_text(priv, "No server in request");
| ^~~~~~~~~~~~~~~
krb5tgs.c:1665:2: warning: nested extern declaration of ‘_kdc_set_e_text’
[-Wnested-externs]
krb5tgs.c:1665:18: error: ‘priv’ undeclared (first use in this function)
1665 | _kdc_set_e_text(priv, "No server in request");
| ^~~~
krb5tgs.c:1665:18: note: each undeclared identifier is reported only once for
each function it appears in
CC config.o
make[2]: *** [Makefile:1037: krb5tgs.lo] Error 1
* Heimdal doesn't appear build on sid anymore. Syntax error in
configure, which I can't work out (the file looks fine to me).
checking for dn_expand... yes
checking for _res... yes
./configure: line 20867: syntax error near unexpected token `)'
./configure: line 20867: `)'
make[1]: *** [debian/rules:38: override_dh_auto_configure] Error 2
Anyway, just my status for now. Help appreciated :-)
--
Brian May <[email protected]>
