-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 01 Jul 2024 13:40:03 -0600 Source: krb5 Binary: krb5-admin-server krb5-admin-server-dbgsym krb5-gss-samples krb5-gss-samples-dbgsym krb5-k5tls krb5-k5tls-dbgsym krb5-kdc krb5-kdc-dbgsym krb5-kdc-ldap krb5-kdc-ldap-dbgsym krb5-kpropd krb5-kpropd-dbgsym krb5-multidev krb5-otp krb5-otp-dbgsym krb5-pkinit krb5-pkinit-dbgsym krb5-user krb5-user-dbgsym libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12 libkadm5srv-mit12 libkdb5-10 libkrad-dev libkrad0 libkrb5-3 libkrb5-dbg libkrb5-dev libkrb5support0 Architecture: i386 Version: 1.18.3-6+deb11u5 Distribution: bullseye-security Urgency: high Maintainer: i386 Build Daemon (x86-grnet-01) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-k5tls - TLS plugin for MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-kpropd - MIT Kerberos key server (Slave KDC Support) krb5-multidev - development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit12 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit12 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-10 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - debugging files for MIT Kerberos libkrb5-dev - headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Changes: krb5 (1.18.3-6+deb11u5) bullseye-security; urgency=high . * CVE-2024-37370: an unauthenticated attacker can modify the extra count in an RFC 4121 GSS token, causing the token to appear truncated. * CVE-2024-37371: an attacker can cause invalid memory reads by sending an invalid GSS token. Checksums-Sha1: bcb915685b7385a06ff191d36291e6e275a8b75a 173932 krb5-admin-server-dbgsym_1.18.3-6+deb11u5_i386.deb c3cbcdc753990ef8ad6ce7e8bfc8e70bd647a357 128520 krb5-admin-server_1.18.3-6+deb11u5_i386.deb ca5a3ef8e70a03ed0995f275866a2e369d9ce9db 34096 krb5-gss-samples-dbgsym_1.18.3-6+deb11u5_i386.deb 504be423d12f9951569158604a96492c1960fa96 61712 krb5-gss-samples_1.18.3-6+deb11u5_i386.deb b33e347b427d0a534059152a9de5eeed301774d0 18732 krb5-k5tls-dbgsym_1.18.3-6+deb11u5_i386.deb 089955b3cf24bc73a732a4607d15c02d18093be6 52516 krb5-k5tls_1.18.3-6+deb11u5_i386.deb cbdec145514058247bbc43aa5f35096f542d121a 377668 krb5-kdc-dbgsym_1.18.3-6+deb11u5_i386.deb 1cff881a19662315a6ff5a388eae6e05ad46edb0 158240 krb5-kdc-ldap-dbgsym_1.18.3-6+deb11u5_i386.deb 2a1efb31eab1358475ae6c5d2dd6b4e20a912fbf 125676 krb5-kdc-ldap_1.18.3-6+deb11u5_i386.deb 5bc51995af5fda08a2c80960c37bcb17d8348da0 223136 krb5-kdc_1.18.3-6+deb11u5_i386.deb 23ad7a105d123dbe31a3ad96187b477bf6b73ffc 38812 krb5-kpropd-dbgsym_1.18.3-6+deb11u5_i386.deb 26788c913a7a31023261ef744c34cf19d8f26fd6 64732 krb5-kpropd_1.18.3-6+deb11u5_i386.deb a9f9c41634b0cee52fdbee12c6a4603220e84520 157828 krb5-multidev_1.18.3-6+deb11u5_i386.deb 53a33e111b9a332ee308c31970de7a5e72012eb5 26792 krb5-otp-dbgsym_1.18.3-6+deb11u5_i386.deb 7797cc57f9c90a092ee6ca2d362a252800077487 55324 krb5-otp_1.18.3-6+deb11u5_i386.deb b6d47f5e05d09167517787178c34f4d4ffc8eb4f 132276 krb5-pkinit-dbgsym_1.18.3-6+deb11u5_i386.deb 7192f47a20cd654d761c28993232f06520135a11 94048 krb5-pkinit_1.18.3-6+deb11u5_i386.deb 08843252701bf0cdc6e78cbe71b8a295fd0dcb04 169936 krb5-user-dbgsym_1.18.3-6+deb11u5_i386.deb fd1d0729599a3605a617d45faf4e1e59fce71a28 154436 krb5-user_1.18.3-6+deb11u5_i386.deb faeb4177ae965566b29452a9c327de8b9b128e0f 15860 krb5_1.18.3-6+deb11u5_i386-buildd.buildinfo 33c41b507531f31366f4abeec02b766337867321 176472 libgssapi-krb5-2_1.18.3-6+deb11u5_i386.deb fe4457343d2e2e553ff08781fd79ebc8860b91a6 95584 libgssrpc4_1.18.3-6+deb11u5_i386.deb 8d0e94bdeda71ee87d7f10fdb2c1f156c0378bd7 117904 libk5crypto3_1.18.3-6+deb11u5_i386.deb cf95d212a5499c86d96fe0b061355f9d68c370f3 75624 libkadm5clnt-mit12_1.18.3-6+deb11u5_i386.deb 3197f2a77ceaa9c47c3da100ac5c4da973ac611a 89528 libkadm5srv-mit12_1.18.3-6+deb11u5_i386.deb e56311462b17008121baf0bca0331af78d29b312 76648 libkdb5-10_1.18.3-6+deb11u5_i386.deb 195a8b653bbb5d5f6a9b71ccf6a93db2c7a619b9 48228 libkrad-dev_1.18.3-6+deb11u5_i386.deb 1c02017c659d7b4a14ae4e6467a8a723232e9c24 58184 libkrad0_1.18.3-6+deb11u5_i386.deb 8d3b4e1cbd468bb6ec334eee8d16696ecf7a2d67 389964 libkrb5-3_1.18.3-6+deb11u5_i386.deb ce50bd6e31fafc67dbc827457181e65ed89f4941 1898076 libkrb5-dbg_1.18.3-6+deb11u5_i386.deb 4ffd36d56334a82bb0ba8d31d23e035caa7a6087 47708 libkrb5-dev_1.18.3-6+deb11u5_i386.deb e12b7f7a04eb9afc25e654d8d2ab666cc5edaf3a 68900 libkrb5support0_1.18.3-6+deb11u5_i386.deb Checksums-Sha256: bc3df580081744d80e6fdfe7dedf3454d6b005b4ff4a985b5f75de0874bf0aee 173932 krb5-admin-server-dbgsym_1.18.3-6+deb11u5_i386.deb 2795e58c36841535fa6793694d2e295adca7b405f69817dbfae5b16edf735e05 128520 krb5-admin-server_1.18.3-6+deb11u5_i386.deb 02d0073915081b4a91a80702d8a9debfc3c3bba41b8ecb3d6a2777bc8c1de1df 34096 krb5-gss-samples-dbgsym_1.18.3-6+deb11u5_i386.deb 109d2b918ca0e8fceb44363d510eceeff5a1f63f729b98fa4ffee87a734f95cf 61712 krb5-gss-samples_1.18.3-6+deb11u5_i386.deb 3db9712d609ccd2766a647931386c22d0092cddfe1de7123cd9cec373bb8ae16 18732 krb5-k5tls-dbgsym_1.18.3-6+deb11u5_i386.deb e70d7742c19777a4ff57a3024f526ddf23d6eeed95554e783bddb8560472eb6b 52516 krb5-k5tls_1.18.3-6+deb11u5_i386.deb 99ab88ec2b632943c313800ee048c01aad9fc9a181dfa92a7a5efae4e5217fc0 377668 krb5-kdc-dbgsym_1.18.3-6+deb11u5_i386.deb 504f155c369a7405b09524be1eeccf6f31d63f0cd4e5634510514c72d97ca2e5 158240 krb5-kdc-ldap-dbgsym_1.18.3-6+deb11u5_i386.deb 7cebe1cb6f6a949088d5574c3bc53bfe0670a9a7c2ef48ae4be826c904e3890b 125676 krb5-kdc-ldap_1.18.3-6+deb11u5_i386.deb cbe6bfcdbb0c45f6c0a3f37bb335e25bb650a726a89e0017d3f8698108b7a8ec 223136 krb5-kdc_1.18.3-6+deb11u5_i386.deb f466a294fef8b7da7d22aa4cafa5b6853164474f8e475bc4a2fda5c806b85fa0 38812 krb5-kpropd-dbgsym_1.18.3-6+deb11u5_i386.deb 00e0bb21c2d0a0890a33c4527d734480ceb56864f74aaa05e0cdff659bfa2499 64732 krb5-kpropd_1.18.3-6+deb11u5_i386.deb 4643b2d948c4a2c78c60bf97b5b44ba92729559d88ffbf725da0129e325a3321 157828 krb5-multidev_1.18.3-6+deb11u5_i386.deb e6a9800bfff74cc2bb1a4887a1ba29eb241c7394f8a450e76b3f0e4396a900b5 26792 krb5-otp-dbgsym_1.18.3-6+deb11u5_i386.deb b2bdd467a793ab9d7f660d8f17a8437588d742a3ce6dae542f11a206505ff497 55324 krb5-otp_1.18.3-6+deb11u5_i386.deb 015c16811abe3c677032a368e54878edf135eef850d1958b38e198096406729a 132276 krb5-pkinit-dbgsym_1.18.3-6+deb11u5_i386.deb 8f314a748c4ad474e7cf903ab0c2d614bae4488d46ce5e4f88f8baef2a5ec471 94048 krb5-pkinit_1.18.3-6+deb11u5_i386.deb 6cdfd6b3ca468bb76809f53590c6c043be32aedb583ee9eaf3a71c6055b8296c 169936 krb5-user-dbgsym_1.18.3-6+deb11u5_i386.deb e38c6cf8bf4f4e4715e111e1536867c4c87e2c0020f1632c6a67b427f4e8218d 154436 krb5-user_1.18.3-6+deb11u5_i386.deb 04584d96e288ba8b50374b65a5457630781b52a08a1e439db5a4572111c0ba9c 15860 krb5_1.18.3-6+deb11u5_i386-buildd.buildinfo e09d9ea43c808912d04df100e2320f7e082276aa237eec875c836f44b35567fe 176472 libgssapi-krb5-2_1.18.3-6+deb11u5_i386.deb 69107b00a93e2c4c3ed525fa0c9f554f820ae3138932897a1388f5a81791a66a 95584 libgssrpc4_1.18.3-6+deb11u5_i386.deb 293dab1d349f761ffc74c39b27f308c962456ee1eeb523fbc03c793a12abba22 117904 libk5crypto3_1.18.3-6+deb11u5_i386.deb ddabaa8f52584e0cdf5f2f8960d0a350f027085c92b1476b8b4515052a5103a7 75624 libkadm5clnt-mit12_1.18.3-6+deb11u5_i386.deb 9599596f6341cee2ca510b682639de3ea605b287512abe4c3016f43c5d5a47d9 89528 libkadm5srv-mit12_1.18.3-6+deb11u5_i386.deb 6ab95cfd9c9170f87e0b2650bc3ff003c72d277dd355ce6782ee5200e395fab5 76648 libkdb5-10_1.18.3-6+deb11u5_i386.deb bb563c0e6714cecd365c618591e845e7a7202ecfb172d52c627f7218f1842bd0 48228 libkrad-dev_1.18.3-6+deb11u5_i386.deb 931bfecb2ac40790641c49fbd4d947c88108accc403eef456ae2d97565fefa30 58184 libkrad0_1.18.3-6+deb11u5_i386.deb 3a1ba7143428f4670f7d01524486f949eb867794cda5f1cc79124d077584d7ea 389964 libkrb5-3_1.18.3-6+deb11u5_i386.deb 2f7b87714ccbd5dfc901cdc1a65cdf90a7122cca8ce2ef971aa8cb30974f69ce 1898076 libkrb5-dbg_1.18.3-6+deb11u5_i386.deb db01d6a349e625283537f3941937cdda35b7f8e1a3014fbfbaae66a75fc64733 47708 libkrb5-dev_1.18.3-6+deb11u5_i386.deb d29cc409b365aedc4bad27b5bee9a83e4e462452b3835206b5e8fdfdfc4cbeac 68900 libkrb5support0_1.18.3-6+deb11u5_i386.deb Files: e83b2028de736b22cd5ddde0d8eabd26 173932 debug optional krb5-admin-server-dbgsym_1.18.3-6+deb11u5_i386.deb 7df0ce79c6f0f3916d1ce58fa3ae5573 128520 net optional krb5-admin-server_1.18.3-6+deb11u5_i386.deb 25f8410c42cb193848197f8cbe7f1547 34096 debug optional krb5-gss-samples-dbgsym_1.18.3-6+deb11u5_i386.deb 39ddcb9d6b03f12a5506939cb0a09ca3 61712 net optional krb5-gss-samples_1.18.3-6+deb11u5_i386.deb 455a09e1aef996d6493f6749a5f15910 18732 debug optional krb5-k5tls-dbgsym_1.18.3-6+deb11u5_i386.deb 40b4bb75a8a00effa1ca0094c53bc3fa 52516 net optional krb5-k5tls_1.18.3-6+deb11u5_i386.deb 2a722cc098a57d7dc5acfcee76b0d32c 377668 debug optional krb5-kdc-dbgsym_1.18.3-6+deb11u5_i386.deb d2eb7257a0549c16ffd348a10f34e55f 158240 debug optional krb5-kdc-ldap-dbgsym_1.18.3-6+deb11u5_i386.deb 9142b3b5c2ff048298e89de975d19497 125676 net optional krb5-kdc-ldap_1.18.3-6+deb11u5_i386.deb 6bf4e7ba4deaaef041fb9850f8f36dac 223136 net optional krb5-kdc_1.18.3-6+deb11u5_i386.deb 051405e0a09a70e00abb01c8dde0e219 38812 debug optional krb5-kpropd-dbgsym_1.18.3-6+deb11u5_i386.deb 29650d751422fe0023a3491a569f40b9 64732 net optional krb5-kpropd_1.18.3-6+deb11u5_i386.deb e9133af4bd2e432dafdc544c7766e861 157828 libdevel optional krb5-multidev_1.18.3-6+deb11u5_i386.deb b5e97940455e211f2878c616dfcbcb40 26792 debug optional krb5-otp-dbgsym_1.18.3-6+deb11u5_i386.deb 3852b48d6839822d7c85b01f94c6c967 55324 net optional krb5-otp_1.18.3-6+deb11u5_i386.deb 5b14cc6a4016b5c1a50699ef2eecbe3e 132276 debug optional krb5-pkinit-dbgsym_1.18.3-6+deb11u5_i386.deb 19bdd9f9b41b7e7105d602859d230bd5 94048 net optional krb5-pkinit_1.18.3-6+deb11u5_i386.deb 7f70401bbd58803886cd70a60618cb3a 169936 debug optional krb5-user-dbgsym_1.18.3-6+deb11u5_i386.deb f2e59d89b9cd30077f379b9248287f5f 154436 net optional krb5-user_1.18.3-6+deb11u5_i386.deb 470bf3e4097f7a2bf4de00a3702486e8 15860 net optional krb5_1.18.3-6+deb11u5_i386-buildd.buildinfo a1f21b3ed2a886ab6c6e6ca1afc0d909 176472 libs optional libgssapi-krb5-2_1.18.3-6+deb11u5_i386.deb d4117a816d6c94b9c00ceb225c7191f9 95584 libs optional libgssrpc4_1.18.3-6+deb11u5_i386.deb 560afa67a28ceffdbd59e5cb212eddc7 117904 libs optional libk5crypto3_1.18.3-6+deb11u5_i386.deb 176621376e4eba7ef47ce5c408b91b2b 75624 libs optional libkadm5clnt-mit12_1.18.3-6+deb11u5_i386.deb e4cc3d8a74e868f7e27f2850229c220f 89528 libs optional libkadm5srv-mit12_1.18.3-6+deb11u5_i386.deb 8edccbf52b31af5687200e5307cb0e74 76648 libs optional libkdb5-10_1.18.3-6+deb11u5_i386.deb 0a248499a6d2d62a7104e94db645b0ea 48228 libdevel optional libkrad-dev_1.18.3-6+deb11u5_i386.deb e4ae123c07621e31cba7dd785107ed22 58184 libs optional libkrad0_1.18.3-6+deb11u5_i386.deb 6b4e816ea8db1e145472f162fe279d2d 389964 libs optional libkrb5-3_1.18.3-6+deb11u5_i386.deb 06fac2fbf691682de7aca2fa196f91e2 1898076 debug optional libkrb5-dbg_1.18.3-6+deb11u5_i386.deb f09e92147b1a263c8d7d553ad08d6aab 47708 libdevel optional libkrb5-dev_1.18.3-6+deb11u5_i386.deb b80cc18f55fd92c6105c84f103e9f0d1 68900 libs optional libkrb5support0_1.18.3-6+deb11u5_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEyTfXx8sBpQ0Lh3cUU9a0/LcaTpMFAmaDGr4ACgkQU9a0/Lca TpOtVA/+NNqNkMA2h2N1xsChsqkbWUPD5880qDyjzAcrREF1II/keBmMNCLNLU70 AWyh8aQ5J1e1bVrYvtFwdpnTPCt0Iat82q41d0HgmBp2Wkezc20wqfFIR09Be62D 7Nky3ElMTlaBo996lCrDNAd0qfEro5sWSD932oYZyl1HJIAEj1OFFBIO0JZOoG3k nlmw1+k2YRAXhNXiB5IgP6YHsMVqdtuhks5sww7t7VRxlfUSM17aGoreG8ehyUrX r2oV2uAChA9GzB5aIAuH9Kn02PqeUXXLQBBKSCONemD853cV8zsWU+7u1djy4JA+ SIkqmSYS1XXZNWQkJieiY4dmSxs7wOMOi5jxKPn7hvybWs7prYHHFxjtVPsOxrWy xEKaEzHiq4l7ZPyBpOiehw4BwbcL5KpJcvNzHCMz+0uW9TWrCUsiuBG/Ldt4fEMg 7FN2BIZ9TIcM6e2grs+exF3q1AjN0GeYjgVUXBWjvsG8TcWAJ2Y6DLtK4Vq15uyW 0HXaexToIT7LHFiStF8eFuxmK49NP2PSuRfDVg+li/R5AbEEvXZbFOg09hihK74A YtHVjz7cX6MMIfxQOlIkmAjvei/O6quO740fcvyOfKasw+ZCcyaPv9XEshc/vtd/ tT4c6ZPfymOg1jO6WE1/FQ1tgqkm9z12T/yVZUvRxBGT1COhAOA= =ATEz -----END PGP SIGNATURE-----