-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 14 Aug 2023 14:06:53 -0600 Source: krb5 Binary: krb5-admin-server krb5-admin-server-dbgsym krb5-gss-samples krb5-gss-samples-dbgsym krb5-k5tls krb5-k5tls-dbgsym krb5-kdc krb5-kdc-dbgsym krb5-kdc-ldap krb5-kdc-ldap-dbgsym krb5-kpropd krb5-kpropd-dbgsym krb5-multidev krb5-otp krb5-otp-dbgsym krb5-pkinit krb5-pkinit-dbgsym krb5-user krb5-user-dbgsym libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12 libkadm5srv-mit12 libkdb5-10 libkrad-dev libkrad0 libkrb5-3 libkrb5-dbg libkrb5-dev libkrb5support0 Architecture: i386 Version: 1.20.1-2+deb12u1 Distribution: bookworm Urgency: high Maintainer: i386 Build Daemon (x86-grnet-01) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-k5tls - TLS plugin for MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-kpropd - MIT Kerberos key server (Slave KDC Support) krb5-multidev - development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit12 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit12 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-10 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - debugging files for MIT Kerberos libkrb5-dev - headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Closes: 1043431 Changes: krb5 (1.20.1-2+deb12u1) bookworm; urgency=high . * Fixes CVE-2023-36054: a remote authenticated attacker can cause kadmind to free an uninitialized pointer. Upstream believes remote code execusion is unlikely, Closes: #1043431 Checksums-Sha1: b2345bfb5193613eddb22ae80fb04ace6a961feb 187680 krb5-admin-server-dbgsym_1.20.1-2+deb12u1_i386.deb 56c5cdd3e20362e707db277d84ca92e04b0b06aa 96444 krb5-admin-server_1.20.1-2+deb12u1_i386.deb cc5d47c80ee9db5e6257205848a04bf69e42df79 36416 krb5-gss-samples-dbgsym_1.20.1-2+deb12u1_i386.deb 48716ba0571ed548d3f510085ad42bf44ecb69c6 28468 krb5-gss-samples_1.20.1-2+deb12u1_i386.deb c1776661f42d262e96782f951664a61a3fb7fa00 18744 krb5-k5tls-dbgsym_1.20.1-2+deb12u1_i386.deb fc464bcb9c9da65e15f7bf886396f4fe84e937ec 19364 krb5-k5tls_1.20.1-2+deb12u1_i386.deb 4d5b3ea9959ca7e26b8adb14bc87ac4c30a2b1f0 403272 krb5-kdc-dbgsym_1.20.1-2+deb12u1_i386.deb 301f37244b1dcc9e5862a70158f862170e29e911 171664 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u1_i386.deb 01f8273e925c2b2485e1977b7b67f5c900e53462 92632 krb5-kdc-ldap_1.20.1-2+deb12u1_i386.deb 9494f36e277b8ab2b26b38ff52b716a8a5787c08 191092 krb5-kdc_1.20.1-2+deb12u1_i386.deb 4719548b1a68b0cb225c08a30662214e863e9ec1 41648 krb5-kpropd-dbgsym_1.20.1-2+deb12u1_i386.deb 6aa5c2fd28ab87cdaf379fdea2efe8191183cc75 31776 krb5-kpropd_1.20.1-2+deb12u1_i386.deb 866360478fa747b394378261d9ed48f5e3222321 124912 krb5-multidev_1.20.1-2+deb12u1_i386.deb 84fe071e4871b67e480c0ddbc716080f676e2166 27360 krb5-otp-dbgsym_1.20.1-2+deb12u1_i386.deb e91d5f34459a761fed31d8e891d32f73c87965f9 22216 krb5-otp_1.20.1-2+deb12u1_i386.deb 796ba81d588cd70f629efb32fd847c753bf0b895 136352 krb5-pkinit-dbgsym_1.20.1-2+deb12u1_i386.deb bc197ccc71ad0521128992552ed56f8aa0fda8eb 61988 krb5-pkinit_1.20.1-2+deb12u1_i386.deb 56d63a0607577dd0538a869e4ff541bacbef2439 178744 krb5-user-dbgsym_1.20.1-2+deb12u1_i386.deb feee160b37972752a44e92f54e2bc3810a0e7d19 120624 krb5-user_1.20.1-2+deb12u1_i386.deb e886459991578f20c5f34e976c757bad3292ea50 15631 krb5_1.20.1-2+deb12u1_i386-buildd.buildinfo fb0ad46b989032a407967f2445e801074d7eacaf 143764 libgssapi-krb5-2_1.20.1-2+deb12u1_i386.deb 13a052cda2be00df8ad390781cfbd2673b48b2fd 61880 libgssrpc4_1.20.1-2+deb12u1_i386.deb 9687f3e0901ba8581a6dd34f3bb0cca42f6f2c67 82500 libk5crypto3_1.20.1-2+deb12u1_i386.deb 3a7c9c4be6ca1c1c9cb02e9d33f181f8120d3be7 42476 libkadm5clnt-mit12_1.20.1-2+deb12u1_i386.deb 96c0a1706e0c32c3d840d48002a01636f9925ff5 55980 libkadm5srv-mit12_1.20.1-2+deb12u1_i386.deb b98d39293d6cca3a24df4c3c0428b025393a07db 43676 libkdb5-10_1.20.1-2+deb12u1_i386.deb 590325a4870ac8d56a10633ade0540a12c0dc13a 15156 libkrad-dev_1.20.1-2+deb12u1_i386.deb b2bb048d56cdac0f09443d0496860fd61a0c121f 24932 libkrad0_1.20.1-2+deb12u1_i386.deb d1784cbdd7107759d31b382a0346f1f2cc461275 359416 libkrb5-3_1.20.1-2+deb12u1_i386.deb a0bf84394c493f8d8859969b04860820bc4794f1 1910224 libkrb5-dbg_1.20.1-2+deb12u1_i386.deb 471c98133b726033cd108c197019ff2c53b535fd 14656 libkrb5-dev_1.20.1-2+deb12u1_i386.deb 21dc9cbf205d73ac47f96703e68c4b9e55372a2f 35204 libkrb5support0_1.20.1-2+deb12u1_i386.deb Checksums-Sha256: 8328e23680d30db3e6f4898c0fc238d7d2dbc95386887e3678a59f4389123159 187680 krb5-admin-server-dbgsym_1.20.1-2+deb12u1_i386.deb e78356533087e5ce314d381ce0fe81e2cf40d62cdac6d9e3ccbd730f3a462bbf 96444 krb5-admin-server_1.20.1-2+deb12u1_i386.deb 7b9bae759ac9aa7dcccfce2c1d55c383ce74b233538bc6b8b482589dd24f087c 36416 krb5-gss-samples-dbgsym_1.20.1-2+deb12u1_i386.deb a8bb996f324a402fe33c37706b3072517cee5758dcee9ea9ea72b9db6a778ea7 28468 krb5-gss-samples_1.20.1-2+deb12u1_i386.deb 519f64d25bc8520fb449e2c9fe7a564f73c63fecb7c5b8431a10a6fac10917b5 18744 krb5-k5tls-dbgsym_1.20.1-2+deb12u1_i386.deb a4226c663d4cb33303e2e2a9abb8d82fa3fe7adb5a26da5437ab1926fdbf5348 19364 krb5-k5tls_1.20.1-2+deb12u1_i386.deb f7187f9000127286c78fa46c62d447d18ddd2f70752f0f35fd2425d48479b854 403272 krb5-kdc-dbgsym_1.20.1-2+deb12u1_i386.deb 78784e5726058609009f57acd972b3ad10bb53755f89c5024918bdbaae30bdfc 171664 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u1_i386.deb bb50065fde4d4e5cea7407ff2004f1d2ea555757cb505cf976e3e27183b05504 92632 krb5-kdc-ldap_1.20.1-2+deb12u1_i386.deb 4a009d405f984d166726ea26bc642e9b02dcb02c0b452a8d539d6cb95c83a299 191092 krb5-kdc_1.20.1-2+deb12u1_i386.deb f04578894954a4c7477a3037ad0547cd1de18a46218a9c9d1c5e2877a55b92fb 41648 krb5-kpropd-dbgsym_1.20.1-2+deb12u1_i386.deb 3cd3c315a698d9d9328bb6b0462d80ba5eb16b5e26a1749d5f54e2d7f13746f1 31776 krb5-kpropd_1.20.1-2+deb12u1_i386.deb bb325c7c81823719a28ce2303df38a834c95ec6e13ed17e77538b1327f19f3e9 124912 krb5-multidev_1.20.1-2+deb12u1_i386.deb a6604ded26ab05337911cd802b638168ec607a600c48e12fc8a8c50e0f7b05b9 27360 krb5-otp-dbgsym_1.20.1-2+deb12u1_i386.deb 709174653dd852c582e990b12105bf1e970ad6a97c200b827f0c7497da7539a9 22216 krb5-otp_1.20.1-2+deb12u1_i386.deb ec055d853c3176c259c5bc8ce4d8c41ed213fda695bd6b90cd680dcfde102277 136352 krb5-pkinit-dbgsym_1.20.1-2+deb12u1_i386.deb 0962b55728b8b5c2d5b655e0b9a87f76b3c3e8ad1586f83fecf0b7d8d6f7236b 61988 krb5-pkinit_1.20.1-2+deb12u1_i386.deb 3b46cdd7b2a6b4040e140e39d0bcde1bca85ab5cd76e2cc77a7edb46de12b0b7 178744 krb5-user-dbgsym_1.20.1-2+deb12u1_i386.deb fc10db3909085c5afe2c029122ef043ea76d0c874097df42efd9789a3b33e048 120624 krb5-user_1.20.1-2+deb12u1_i386.deb f66a1b9842392df5de24a3c98d5bfec7af13639159a9b5819e7f2be17d29abf3 15631 krb5_1.20.1-2+deb12u1_i386-buildd.buildinfo 71027793a0832001e3081bcffd1e34fd60377d0266588edc50974c5eac0b0b63 143764 libgssapi-krb5-2_1.20.1-2+deb12u1_i386.deb ade2ec152ee93f922c977e644a89f48445990b71fe9502c25dfb63fabb113b07 61880 libgssrpc4_1.20.1-2+deb12u1_i386.deb 31fcbb996350a9c7f0c91dea56fab616dfd766e5a63f66aebafc4b95ff861f44 82500 libk5crypto3_1.20.1-2+deb12u1_i386.deb bc74ad58221c1d53a2c7ab4d59635d7187428a86cac2ac79afe3850691f858f7 42476 libkadm5clnt-mit12_1.20.1-2+deb12u1_i386.deb 3803018dae7b85ad05240fa5bc16dd3d6326ba985082b0be8ab992ac467ba779 55980 libkadm5srv-mit12_1.20.1-2+deb12u1_i386.deb c5481dc9da2b4e0c5cf870a8495fdc7a609dcb0b3caff70686c0be28948d79e0 43676 libkdb5-10_1.20.1-2+deb12u1_i386.deb 6e0d4f85074abcfa494e02454d08874c0b84cd31818171b322fe8df89c8f1461 15156 libkrad-dev_1.20.1-2+deb12u1_i386.deb 31e05fc1ae0849397b0caa63c7bf0dfa91b88e42dcb48eac05f85e57b12145f6 24932 libkrad0_1.20.1-2+deb12u1_i386.deb 0a804308f67cc431849ab7e3e47aeb259e50748ce85d98f78cfc241251006ab3 359416 libkrb5-3_1.20.1-2+deb12u1_i386.deb 37580bbaa9390c20fccd56b0068065426fb6efce414ceefccf893e347322e9d1 1910224 libkrb5-dbg_1.20.1-2+deb12u1_i386.deb a6cc807beba68bc3a7837d21ac9da062c5e1f80f90fdb45941cc6505f75d6c4a 14656 libkrb5-dev_1.20.1-2+deb12u1_i386.deb 20af74f767da997cced14417a161b248df0bf7561c5d94c9dd43198c731568c7 35204 libkrb5support0_1.20.1-2+deb12u1_i386.deb Files: 510016941a5222cab76d48f404185d7e 187680 debug optional krb5-admin-server-dbgsym_1.20.1-2+deb12u1_i386.deb 7d16cb109e19fbe8ba21ed85d59afeb9 96444 net optional krb5-admin-server_1.20.1-2+deb12u1_i386.deb d736651fdd0b35ea9696ca6f6ea6f784 36416 debug optional krb5-gss-samples-dbgsym_1.20.1-2+deb12u1_i386.deb f55e1246aae004657555105a318bd5d6 28468 net optional krb5-gss-samples_1.20.1-2+deb12u1_i386.deb 5f3319e1bc09fc9170d113e89823222d 18744 debug optional krb5-k5tls-dbgsym_1.20.1-2+deb12u1_i386.deb dacbdef69cd70c955486f46e705f1db6 19364 net optional krb5-k5tls_1.20.1-2+deb12u1_i386.deb f438022081ad54244d73ed18fd80fac9 403272 debug optional krb5-kdc-dbgsym_1.20.1-2+deb12u1_i386.deb ff3b77b686696668a328b10c5c7b9a40 171664 debug optional krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u1_i386.deb 2e68d1dd1d1547d1df9831e380433962 92632 net optional krb5-kdc-ldap_1.20.1-2+deb12u1_i386.deb c6ea39c11e6b454f0966f7cbb92f410c 191092 net optional krb5-kdc_1.20.1-2+deb12u1_i386.deb bdcc3fd7cb794eb15e632f312c6df478 41648 debug optional krb5-kpropd-dbgsym_1.20.1-2+deb12u1_i386.deb 0f6abbdc96114ce0d05f1937b6b5a6c7 31776 net optional krb5-kpropd_1.20.1-2+deb12u1_i386.deb f1de7d3ceae2f9c3170fc46ca7680e0d 124912 libdevel optional krb5-multidev_1.20.1-2+deb12u1_i386.deb 5ac70f349ab3c1a47c664994499c2968 27360 debug optional krb5-otp-dbgsym_1.20.1-2+deb12u1_i386.deb b3fd1ea1b3c1b6b54bd214045e5e7aef 22216 net optional krb5-otp_1.20.1-2+deb12u1_i386.deb bbb1daf0eaf80cd828c291b84e3bba4b 136352 debug optional krb5-pkinit-dbgsym_1.20.1-2+deb12u1_i386.deb 779d99d65bd51f3a7f02551a7382da9c 61988 net optional krb5-pkinit_1.20.1-2+deb12u1_i386.deb c2cc7a6e06d29fc1f0458de989d9ea6a 178744 debug optional krb5-user-dbgsym_1.20.1-2+deb12u1_i386.deb dc3fb5a0d9586afad070dc65f67e5912 120624 net optional krb5-user_1.20.1-2+deb12u1_i386.deb 2028505b769f9fe4ac1be6daf993493a 15631 net optional krb5_1.20.1-2+deb12u1_i386-buildd.buildinfo 7d09277bd280b70f40c41fc03b9329f0 143764 libs optional libgssapi-krb5-2_1.20.1-2+deb12u1_i386.deb 8c2c47dd2ed77d04299aa9aa477b215f 61880 libs optional libgssrpc4_1.20.1-2+deb12u1_i386.deb 47050224b017bde78319b19306701872 82500 libs optional libk5crypto3_1.20.1-2+deb12u1_i386.deb 6c37e0f90b5e5fd33334f2c15d336e2c 42476 libs optional libkadm5clnt-mit12_1.20.1-2+deb12u1_i386.deb 6d0a482031eab667147375e679165b6e 55980 libs optional libkadm5srv-mit12_1.20.1-2+deb12u1_i386.deb 97f235956b679ed4dc9c7ec02ee5cd49 43676 libs optional libkdb5-10_1.20.1-2+deb12u1_i386.deb cd5178b7dcaad19179a7bef53a6407aa 15156 libdevel optional libkrad-dev_1.20.1-2+deb12u1_i386.deb ef05acb1049c0f3ac1970f994d2116e9 24932 libs optional libkrad0_1.20.1-2+deb12u1_i386.deb 5fabb69589081f6a4946d5f0d96ade3d 359416 libs optional libkrb5-3_1.20.1-2+deb12u1_i386.deb 104fd2ce680dd553bda8e34ba9dfb181 1910224 debug optional libkrb5-dbg_1.20.1-2+deb12u1_i386.deb 36f0b66dea8e7340801d9197e645fa29 14656 libdevel optional libkrb5-dev_1.20.1-2+deb12u1_i386.deb a2891f39359a2efac82afdcb74983cff 35204 libs optional libkrb5support0_1.20.1-2+deb12u1_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE7bJOCbihllHz5a8G6bGbnoZY/NwFAmTgLRYACgkQ6bGbnoZY /NwP/A/+J6m3rS+/emSdWuiZNX+RgiNB+nNMyRAejK8I7h8Z1w1B5jw/mQMYm4SE fJhSEudoNiV5oxOVCIPvYoQzE5JvYpII/rB3aSCdDxJVPRZKJgbVFeqEFJZoBNjx wrGarLEuvF+duuXrNWYG1Vf6VI+7q9Ous/WFNG8ZHP23TgOcVTaow1lZ5Ilf2Qzl 0RvwBzDUBbc2DSa+cX19Hmn2SZu7fhk46OGqWH/Emdhjv8MEDdld1RgEQb9DFKYh raxhTXnUftnJc2JN5phk53qhHcHY86DNDfOGnNfV3C3zz0stkHYGUJQJu+eteDHI 0ik0e1H1bOGAGVZjz983YX9Yk0Rnqr1m8XPwKgNHkLE/rFDD9QFQqZ8Vmd8flq4y igrJ/MgPY0rvaX1auaH+j7akK+0KTW1oIBvD2U7xN8oYQqEWW8WTSEuD2azO1p/P 5bQeTHUqp4qAmBOggwYbqwPR4r9eF1L3u5OqfVvsp0XKs7K0O0LLk2skVSc4yNnl j3LjqjGnSzwUaEmwra8gRChAGo6Tlc4x3BvaVmLZ91jClK0PbxYr31lB601fXvUc VsiuHpke7vH/uSE4OiTfnzLQIC6GdLalfxR5gpQFHRtv7EVX6QXELTiKCOhxHePR Qne08BeX6snUc3vMV5xUO99IlfFMbLLos6S0V0lKYUKuHmnvXWI= =9eDC -----END PGP SIGNATURE-----