-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 01 Jul 2024 13:40:03 -0600 Source: krb5 Binary: krb5-admin-server krb5-admin-server-dbgsym krb5-gss-samples krb5-gss-samples-dbgsym krb5-k5tls krb5-k5tls-dbgsym krb5-kdc krb5-kdc-dbgsym krb5-kdc-ldap krb5-kdc-ldap-dbgsym krb5-kpropd krb5-kpropd-dbgsym krb5-multidev krb5-otp krb5-otp-dbgsym krb5-pkinit krb5-pkinit-dbgsym krb5-user krb5-user-dbgsym libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12 libkadm5srv-mit12 libkdb5-10 libkrad-dev libkrad0 libkrb5-3 libkrb5-dbg libkrb5-dev libkrb5support0 Architecture: armhf Version: 1.18.3-6+deb11u5 Distribution: bullseye-security Urgency: high Maintainer: arm Build Daemon (arm-ubc-06) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-k5tls - TLS plugin for MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-kpropd - MIT Kerberos key server (Slave KDC Support) krb5-multidev - development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit12 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit12 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-10 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - debugging files for MIT Kerberos libkrb5-dev - headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Changes: krb5 (1.18.3-6+deb11u5) bullseye-security; urgency=high . * CVE-2024-37370: an unauthenticated attacker can modify the extra count in an RFC 4121 GSS token, causing the token to appear truncated. * CVE-2024-37371: an attacker can cause invalid memory reads by sending an invalid GSS token. Checksums-Sha1: f7668b559ddcaad354a1fc2afdaff8ab528ca831 197720 krb5-admin-server-dbgsym_1.18.3-6+deb11u5_armhf.deb 3e961dbdd2bba9e2b6d6bce491188c02c7b924bd 117668 krb5-admin-server_1.18.3-6+deb11u5_armhf.deb f517d2c623d3e57ba483dd8e2e958890477f3c72 37304 krb5-gss-samples-dbgsym_1.18.3-6+deb11u5_armhf.deb 24e94eae19e49b4a7211b0305c2e61ef0162e6ba 59672 krb5-gss-samples_1.18.3-6+deb11u5_armhf.deb 13b56066f577a69422d480f1a0bb37a817256a94 20156 krb5-k5tls-dbgsym_1.18.3-6+deb11u5_armhf.deb 3538ee94e718887abb2ae2f8eb985414cf72f530 50924 krb5-k5tls_1.18.3-6+deb11u5_armhf.deb c1a60e55da65a3950bf5aaa7c96233451dc74d0f 428580 krb5-kdc-dbgsym_1.18.3-6+deb11u5_armhf.deb a7e867b7893f6ace2d03076bdc2d7e6628cf7120 181916 krb5-kdc-ldap-dbgsym_1.18.3-6+deb11u5_armhf.deb a053e8a52b67e1b59ce69678143a34efc79e99c7 113732 krb5-kdc-ldap_1.18.3-6+deb11u5_armhf.deb 6945644ebc5bf13a344d33d9dae41d0bf0334704 192680 krb5-kdc_1.18.3-6+deb11u5_armhf.deb d808f593a7654819efa535612c76aa58300e5439 42776 krb5-kpropd-dbgsym_1.18.3-6+deb11u5_armhf.deb 7844e2bfef5121347308b0ec293000b1da0c9de2 63532 krb5-kpropd_1.18.3-6+deb11u5_armhf.deb aef0f7a77178c47f1b9f2e585c7591ad20aed823 157836 krb5-multidev_1.18.3-6+deb11u5_armhf.deb 542e5811a2cb5cb0d2de84cb2b89b4efe4965a37 29224 krb5-otp-dbgsym_1.18.3-6+deb11u5_armhf.deb 6ca761c0fdab44a5ef6bb8e4888329454cbc9b18 53076 krb5-otp_1.18.3-6+deb11u5_armhf.deb 436e1921a96aa7e26868bfe947b5730031d258d9 149280 krb5-pkinit-dbgsym_1.18.3-6+deb11u5_armhf.deb cbafa0e39b293dd5a55386c85ce17e44a6d5bf14 81096 krb5-pkinit_1.18.3-6+deb11u5_armhf.deb 5d949d7ee583801469e3a18c84e0a13656d4e044 194708 krb5-user-dbgsym_1.18.3-6+deb11u5_armhf.deb 5a8c9081aeda5547361b2db26b46a123c9267bc4 146564 krb5-user_1.18.3-6+deb11u5_armhf.deb ffdd2e6b0672565ccc684718d97bdfd813107f40 15893 krb5_1.18.3-6+deb11u5_armhf-buildd.buildinfo 6e973ad43950ed2b1b8b3fa12b6848b14bdbe789 144044 libgssapi-krb5-2_1.18.3-6+deb11u5_armhf.deb d7faa8f316d36c1c334d0f96fcc5c10a43723b78 84164 libgssrpc4_1.18.3-6+deb11u5_armhf.deb f945d59d6bb527ee8b3af18001db632c015a1d6a 110800 libk5crypto3_1.18.3-6+deb11u5_armhf.deb 36bdeaa10c0a772adf51bdb495e70b86fe5902f6 69144 libkadm5clnt-mit12_1.18.3-6+deb11u5_armhf.deb d639455057b77f0aa45e1dc991c9ba5f330acf92 78876 libkadm5srv-mit12_1.18.3-6+deb11u5_armhf.deb c787b56c559ec756b75455e1785e905fe77c0c14 68536 libkdb5-10_1.18.3-6+deb11u5_armhf.deb 84b42ce4cf80cd897613df898b62d642bd2377da 48224 libkrad-dev_1.18.3-6+deb11u5_armhf.deb 0cb569906f96e9c79bff14e031a2148e2f0fbb49 55344 libkrad0_1.18.3-6+deb11u5_armhf.deb 8e6211a588c734a318f5b39f3b06b77e2ff396bf 319488 libkrb5-3_1.18.3-6+deb11u5_armhf.deb 0d19307f60138035871b690f3eb9ae4d6df70854 2160676 libkrb5-dbg_1.18.3-6+deb11u5_armhf.deb ad1394d2139a18894d5937e8567470d76b3a969c 47720 libkrb5-dev_1.18.3-6+deb11u5_armhf.deb fde0572c544f590a057e436566f7a3e1af5544ac 62812 libkrb5support0_1.18.3-6+deb11u5_armhf.deb Checksums-Sha256: b9b7a0af8e445ba03397b39276b9f0be9a4707b487ea09e2c7bae7bb7f722dd1 197720 krb5-admin-server-dbgsym_1.18.3-6+deb11u5_armhf.deb 324b8fa1dfd74d4c25190cc29c480faaff5d70002f5663d9328731a7151988ae 117668 krb5-admin-server_1.18.3-6+deb11u5_armhf.deb e17cf2abd9c2e38ce31922232446833e496e372c90273ea756cb74e193a27108 37304 krb5-gss-samples-dbgsym_1.18.3-6+deb11u5_armhf.deb c145eee4d2cce35dc56c778104cc6205d2e8680b35dd741b04815abf5b6e64c2 59672 krb5-gss-samples_1.18.3-6+deb11u5_armhf.deb ba39aaf41cd3280604a9a5abba7f41047fd3532833ecfea0e52a94d321b65ea4 20156 krb5-k5tls-dbgsym_1.18.3-6+deb11u5_armhf.deb 5649f110303ac2fade108a5d263b4a867f860e0b06c0b578d798636c22e7b5df 50924 krb5-k5tls_1.18.3-6+deb11u5_armhf.deb 25868ffa9919303ec61d28da38cc915a54eaac2a9493236bd4ca5acb3294a930 428580 krb5-kdc-dbgsym_1.18.3-6+deb11u5_armhf.deb 4f7107adfea43c253fa5739871b25fbfc3dd93d6f1ac423559360bbdad53d9ce 181916 krb5-kdc-ldap-dbgsym_1.18.3-6+deb11u5_armhf.deb c8a91d23e5385ab1ff387d9308e95e41bc65b49a0d0badcabba381da51c09a48 113732 krb5-kdc-ldap_1.18.3-6+deb11u5_armhf.deb 312139ef815ecb76bd22f19ef6d7d7ee54340056b3d0d92f750f7a172e5a98c0 192680 krb5-kdc_1.18.3-6+deb11u5_armhf.deb 7452ee5f55906ee2a43e0b10e0143acfcb871c6eb89b5041abd123f77efecd3e 42776 krb5-kpropd-dbgsym_1.18.3-6+deb11u5_armhf.deb 356e8aa1f74b07af9c06efc174d1c48a34fcd5110ab6b09d1e6fa253b6084fa7 63532 krb5-kpropd_1.18.3-6+deb11u5_armhf.deb 18db00ba58adb12ec0cedace1d593a83e7fe7c9ef149049787f6b454bcc8d71a 157836 krb5-multidev_1.18.3-6+deb11u5_armhf.deb a93c124e3a94b676e74afef1e0693b29bd68f7ce1ac8e2cdf2f15b43fdddb1e3 29224 krb5-otp-dbgsym_1.18.3-6+deb11u5_armhf.deb ae06b9b26b4c23854911fbb7ffbcebee4f6aa77e4318c7ae5784d7a74ecf174f 53076 krb5-otp_1.18.3-6+deb11u5_armhf.deb 9cac36ae52c066fd0088883565743ba09296f9781d08b8e040aa44226ccca255 149280 krb5-pkinit-dbgsym_1.18.3-6+deb11u5_armhf.deb 501aaee05ab0b0aa79d31260dd6fe8a522e215ccdc9b7b8457958e232762e8a4 81096 krb5-pkinit_1.18.3-6+deb11u5_armhf.deb c5009ba84383698d47025cb5c3a9a059fdadfac4c39322e93996830e6588c5e3 194708 krb5-user-dbgsym_1.18.3-6+deb11u5_armhf.deb b287b6a8b864630e63f7c8c109e815bba94eb4d7b128d350f36475f4f732665d 146564 krb5-user_1.18.3-6+deb11u5_armhf.deb 50d8f64d3c2676a7a73285a726bbe71a66120253f584563e460b7594ded42e9a 15893 krb5_1.18.3-6+deb11u5_armhf-buildd.buildinfo c77650ba2b0672d9161cac24b2c6c2e4d312bcc1b808098d9bb991d60b039dd1 144044 libgssapi-krb5-2_1.18.3-6+deb11u5_armhf.deb 8fdd22e7f890eb50260aa56fb5f0d901b28813ce95378b8841f9e28bd72b7c65 84164 libgssrpc4_1.18.3-6+deb11u5_armhf.deb 3da64564370d8a38f0f6d61f932855f332d9b125bf64598b9c771223f98413af 110800 libk5crypto3_1.18.3-6+deb11u5_armhf.deb ab8cee506a16af2892ee9d7f4d6d90a5adbd6e27e7a7669d2344d8d61f43ad2d 69144 libkadm5clnt-mit12_1.18.3-6+deb11u5_armhf.deb a0b2860e8bb237280cea03a59edba77a0447d88fcebb1278788f46d45b8f255f 78876 libkadm5srv-mit12_1.18.3-6+deb11u5_armhf.deb 713174eee8398ecee270e1cce819a567aa80751a39d4ac6684796d36c99cb0c8 68536 libkdb5-10_1.18.3-6+deb11u5_armhf.deb 86142ff19ecc48e98e6fa0bf89f9a2b646fa5d19dab60634aef42bac3a7c7381 48224 libkrad-dev_1.18.3-6+deb11u5_armhf.deb dfcea8c8b24d36d9a93db87e35ceaa6528fecc4e9948035ee42989cc966b602d 55344 libkrad0_1.18.3-6+deb11u5_armhf.deb fd412529978ab7c9b669002185a729f52362c6f679f0ccd033264e3b97ddbae1 319488 libkrb5-3_1.18.3-6+deb11u5_armhf.deb 30ca93ffb3dd7e8fa1c2cd161830a9883d4c6a28d62feb507b1323e2082021e6 2160676 libkrb5-dbg_1.18.3-6+deb11u5_armhf.deb 56c07f2736dd2ad1f2038512311390f74d25603bbb32acde3175b9f4ccbee978 47720 libkrb5-dev_1.18.3-6+deb11u5_armhf.deb 0f6316394d4d049a6b5282841891fc4ac91aafb40ef406fe60f7efb9afd02818 62812 libkrb5support0_1.18.3-6+deb11u5_armhf.deb Files: 5ce54a602f6687bf2134105852fb4225 197720 debug optional krb5-admin-server-dbgsym_1.18.3-6+deb11u5_armhf.deb e7f4e8309688f74bcf3ea4d98e532e94 117668 net optional krb5-admin-server_1.18.3-6+deb11u5_armhf.deb 48f28c31066887f2e7afb67a5ccda35a 37304 debug optional krb5-gss-samples-dbgsym_1.18.3-6+deb11u5_armhf.deb ebc5904539699ff47bab25437cc81ee8 59672 net optional krb5-gss-samples_1.18.3-6+deb11u5_armhf.deb 5e3eba70d6f8e96e744274a83974223b 20156 debug optional krb5-k5tls-dbgsym_1.18.3-6+deb11u5_armhf.deb d7906990ec2b4ba9a0a6e9c94d911a31 50924 net optional krb5-k5tls_1.18.3-6+deb11u5_armhf.deb f1ac962f571fe2a877d437471d5306f0 428580 debug optional krb5-kdc-dbgsym_1.18.3-6+deb11u5_armhf.deb db2ec59c4be74f5fd07ed3a3d5dfe2c2 181916 debug optional krb5-kdc-ldap-dbgsym_1.18.3-6+deb11u5_armhf.deb 25505e2fcada944c07afe54d228c0b9e 113732 net optional krb5-kdc-ldap_1.18.3-6+deb11u5_armhf.deb 9c78d9a6ec640b11038561cace76941b 192680 net optional krb5-kdc_1.18.3-6+deb11u5_armhf.deb 060c3a8520b46ba8d67fff724174291e 42776 debug optional krb5-kpropd-dbgsym_1.18.3-6+deb11u5_armhf.deb 61716357a724b35e17eb86412c80c4a1 63532 net optional krb5-kpropd_1.18.3-6+deb11u5_armhf.deb 58c110954ca0dd0865ebe1f6aca99cbf 157836 libdevel optional krb5-multidev_1.18.3-6+deb11u5_armhf.deb 6f583689e489ca9844d74c7e5aeea993 29224 debug optional krb5-otp-dbgsym_1.18.3-6+deb11u5_armhf.deb 09a2b12a295f6c718db1672f63f1d496 53076 net optional krb5-otp_1.18.3-6+deb11u5_armhf.deb 3870a8620bd1c627dee1afa038d1e37b 149280 debug optional krb5-pkinit-dbgsym_1.18.3-6+deb11u5_armhf.deb 376486027f250c606e77b60dd5d1bae5 81096 net optional krb5-pkinit_1.18.3-6+deb11u5_armhf.deb 6eb19ff5925074fb542b2943ef6fa96c 194708 debug optional krb5-user-dbgsym_1.18.3-6+deb11u5_armhf.deb 4841036c9e546854d4275cb638eb849b 146564 net optional krb5-user_1.18.3-6+deb11u5_armhf.deb 428d82905c13a307c9370e046cfe9bae 15893 net optional krb5_1.18.3-6+deb11u5_armhf-buildd.buildinfo 343272d4a608facddb882a9174cf44f7 144044 libs optional libgssapi-krb5-2_1.18.3-6+deb11u5_armhf.deb 852eb9d05edc0431c17cace6f8c668db 84164 libs optional libgssrpc4_1.18.3-6+deb11u5_armhf.deb 6ee87e1d5ff742b71f8324b9f44bc7f7 110800 libs optional libk5crypto3_1.18.3-6+deb11u5_armhf.deb b29948b80983fd0896baaee41057356b 69144 libs optional libkadm5clnt-mit12_1.18.3-6+deb11u5_armhf.deb 4a708b8eaaf53dc78f5734999fe31213 78876 libs optional libkadm5srv-mit12_1.18.3-6+deb11u5_armhf.deb 2a8bbbaf12a5602d1e6787ad8f734ac2 68536 libs optional libkdb5-10_1.18.3-6+deb11u5_armhf.deb ce5813c440ca0add0e0d5ce491a9da8f 48224 libdevel optional libkrad-dev_1.18.3-6+deb11u5_armhf.deb fb73f050094774d647cde243597b820b 55344 libs optional libkrad0_1.18.3-6+deb11u5_armhf.deb c265737bad84a0a4d4c0d9567bdeb9b9 319488 libs optional libkrb5-3_1.18.3-6+deb11u5_armhf.deb 8226fcb827591deeb568e3da47b685a3 2160676 debug optional libkrb5-dbg_1.18.3-6+deb11u5_armhf.deb a936e4539ee56fa731adc31352de4777 47720 libdevel optional libkrb5-dev_1.18.3-6+deb11u5_armhf.deb c030e24c9a917d31c917a38ed1abfc66 62812 libs optional libkrb5support0_1.18.3-6+deb11u5_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEErcTbumGV7Ig2iXlfQdxRZ9J7nEgFAmaDHFwACgkQQdxRZ9J7 nEiX+Q//Ur7Y8+Ck8Jp21fuG0RL9aVyrp94V/pdRf2npHnSlqDd7qhcHfwQU4mYF A7T02/aPZCwPqOe3Nu21ZbG2eh22vhj/ncMN/O7Yarma84vLOlWpQnpAnST0jl+o ct3/1Gh6NlFdt0tKB+pNrEqVVYxS/BAXsYbGId+sLEuuFg1IeoyKI9QEHwGQ41qG IuYCIKv+btq6CjjhLErZpyX3rLFpMAFMNnkwTUCmJBr++xkDX+Ay0+mH54k3KqRy vP8kVmoJ3A5JKRgWnCRChIX0d/iUaz8YBxLEJZY+fTwEK5Sv8SF/A4ur2mh0wDZB dRr7rOx+p2GDM9P779tznuWX9y+UuVpqH9/iwQMcdm2UY381S9qA53x9ouCqoMw9 AzziQqkuFZhFu8Iplt5zqHYpVCH7rHuJ//s4e2lQ3lYSdMLKQc2HItcj3BgjQBow Sf9PSswCIUMxJ11XwU8JkqKDXAQR98MqkFCktQkDbScSAsvyhnIaUlrA0Hdrij7c rQy+A8ROpCGEA8fsp6gJh44vX7xv6Z8RIjW/0QdRREYKCCY4seN5NFnWHTw0aDR1 qeI8kpJx0kOwTBlGZwK3ZdyxrRKBHmW4FAEVW456CHY/2GB3ds0sdho8/Fv0ttu+ iz3DnritCS3BFKmkpzNFcX7OEWqh+LnCzTvV6Ktb7KReuaJ90gg= =Gvi6 -----END PGP SIGNATURE-----