-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 01 Jul 2024 11:31:35 -0600 Source: krb5 Binary: krb5-admin-server krb5-admin-server-dbgsym krb5-gss-samples krb5-gss-samples-dbgsym krb5-k5tls krb5-k5tls-dbgsym krb5-kdc krb5-kdc-dbgsym krb5-kdc-ldap krb5-kdc-ldap-dbgsym krb5-kpropd krb5-kpropd-dbgsym krb5-multidev krb5-otp krb5-otp-dbgsym krb5-pkinit krb5-pkinit-dbgsym krb5-user krb5-user-dbgsym libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12 libkadm5srv-mit12 libkdb5-10 libkrad-dev libkrad0 libkrb5-3 libkrb5-dbg libkrb5-dev libkrb5support0 Architecture: arm64 Version: 1.20.1-2+deb12u2 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-conova-03) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-k5tls - TLS plugin for MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-kpropd - MIT Kerberos key server (Slave KDC Support) krb5-multidev - development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit12 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit12 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-10 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - debugging files for MIT Kerberos libkrb5-dev - headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Changes: krb5 (1.20.1-2+deb12u2) bookworm-security; urgency=high . * CVE-2024-37370: an unauthenticated attacker can modify the extra count in an RFC 4121 GSS token, causing the token to appear truncated. * CVE-2024-37371: an attacker can cause invalid memory reads by sending an invalid GSS token. Checksums-Sha1: e85da7e0afce1e569a151906b28ac6239cb51763 210828 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_arm64.deb a5588c50e8f979a1fd49e3a5f33dfc9231c5673f 88808 krb5-admin-server_1.20.1-2+deb12u2_arm64.deb 19f25f87f713dc603a387d7bc13a957101839fb0 39304 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_arm64.deb b7c1e6d9a38c435e58111dbbb2568118877a8558 27488 krb5-gss-samples_1.20.1-2+deb12u2_arm64.deb 6af3c98aec4d9ebca4b482ecb626b1d79dae0e5c 20108 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_arm64.deb 1b5b0ad84e39e4d03401df27edae53cd6860aed5 18964 krb5-k5tls_1.20.1-2+deb12u2_arm64.deb 212531067bae0a037b97cb987f95deb29ef9384c 445956 krb5-kdc-dbgsym_1.20.1-2+deb12u2_arm64.deb 9d90adc810a65ca44ddd5ab5963e1fc907877138 190908 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_arm64.deb beb7a8124d7c1f9922119bf2e3fec3fa9dc803c6 84924 krb5-kdc-ldap_1.20.1-2+deb12u2_arm64.deb be51a705cd86c2bfcb40f7544cf80ff609ec5def 171584 krb5-kdc_1.20.1-2+deb12u2_arm64.deb 69a4e268d28902058945a008cfe148704c7181db 43964 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_arm64.deb 584868fa3d153429f51ca897a2927d99682ed1a8 30500 krb5-kpropd_1.20.1-2+deb12u2_arm64.deb 489f48fa38afa9f3d437098a140805aacdaaeb0e 125024 krb5-multidev_1.20.1-2+deb12u2_arm64.deb 1c12eae1cfe75649388a71b2a5f69d270000b51d 29040 krb5-otp-dbgsym_1.20.1-2+deb12u2_arm64.deb aa3b75fb71f9f8dd854e6ab761f4a8ff43fe7620 21060 krb5-otp_1.20.1-2+deb12u2_arm64.deb c543d62ceccb4ab501e674dcbef90c0057ba38dc 155932 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_arm64.deb 1270e7fb74d2285efa57756f2a14c97aab2f05ba 53760 krb5-pkinit_1.20.1-2+deb12u2_arm64.deb 4daf0005132880eabecca8d1084411be075d5ec1 201880 krb5-user-dbgsym_1.20.1-2+deb12u2_arm64.deb 630b198df9b4dec02c9a3d3b37653b97730c2c9f 115576 krb5-user_1.20.1-2+deb12u2_arm64.deb de147249fe30da14969259be82cbd331b2d0e42c 15849 krb5_1.20.1-2+deb12u2_arm64-buildd.buildinfo 2fa97e652d1a5236eed2ce1f62e62d3c0d5047d6 123740 libgssapi-krb5-2_1.20.1-2+deb12u2_arm64.deb 42189670292226d71da6c4b97441081b90e74e26 55332 libgssrpc4_1.20.1-2+deb12u2_arm64.deb 99d361074a9bf66719f5dc2151aad6ac7c8b4885 79408 libk5crypto3_1.20.1-2+deb12u2_arm64.deb 535f402a2a01d46444deca111abb1161302a67f4 39324 libkadm5clnt-mit12_1.20.1-2+deb12u2_arm64.deb 8dfb3c29d9fa3bedc502b70f3c12595ae6518551 50984 libkadm5srv-mit12_1.20.1-2+deb12u2_arm64.deb 4061c223b8696565674ff93cb6d0ed859e5a6abd 39440 libkdb5-10_1.20.1-2+deb12u2_arm64.deb 7bb2bd251819c70ecddb93f7856ec103174ac3a1 15292 libkrad-dev_1.20.1-2+deb12u2_arm64.deb 900272c106b9360d3670366069438ea444df47c6 23820 libkrad0_1.20.1-2+deb12u2_arm64.deb a4ddad6ea9fbae11fe3d55ca80262b37a879b671 313344 libkrb5-3_1.20.1-2+deb12u2_arm64.deb bd17e09f38f0dbbbdadc089c17a8cfe05a9f9be5 2130852 libkrb5-dbg_1.20.1-2+deb12u2_arm64.deb 1a3d5fd29add830f08c0526c12e35f611f2c6a55 14828 libkrb5-dev_1.20.1-2+deb12u2_arm64.deb 1686d55b0ac4a0d15d22d69be60c7980ba0c846a 31824 libkrb5support0_1.20.1-2+deb12u2_arm64.deb Checksums-Sha256: d2f4f03498424d4e9d2472cacbf9cad4df63c5f6c8419039aeb499f4f007a0c8 210828 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_arm64.deb 44df69cc28128ae40a004bcb28debc6a8045f4751497c4dba90fc2d3fddfb866 88808 krb5-admin-server_1.20.1-2+deb12u2_arm64.deb 7672f0595cb42d54a19be4feb1dd28c39f2b0fc53c082f27a96bb486fcf08437 39304 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_arm64.deb 816fe2adaec42aff1fff2a8f644378c42f21b237177d455cf541b86e3ee2028f 27488 krb5-gss-samples_1.20.1-2+deb12u2_arm64.deb bf58c92a883212b21a836b474e482fcf2da7440299d607e03358e395fda3f800 20108 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_arm64.deb 8912c02ae71fd1acb9a39f7114da5b1570af05949901fe2c3c06441a2af8185a 18964 krb5-k5tls_1.20.1-2+deb12u2_arm64.deb 6ccef5365afa9cf6fa97df38636d8f8af408505251c58a4a8c73c685ef54e98a 445956 krb5-kdc-dbgsym_1.20.1-2+deb12u2_arm64.deb 853de16ac27001180b6c3c2b3d5c6490ef50722323d34431e357ac4378e55ac8 190908 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_arm64.deb 956d5cb2feb732f646be40dea4323623ff5bae3e82d22bce5f168a88ae6b8943 84924 krb5-kdc-ldap_1.20.1-2+deb12u2_arm64.deb fcdeffb81b872c7f07de5e137753a0798fbf5c9f7f5a520c601d1e3dc25868f3 171584 krb5-kdc_1.20.1-2+deb12u2_arm64.deb 0271b0449ab02ef1c1fe61e0ad787f9793616a7d63da958ac4f91e50ab9c91b6 43964 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_arm64.deb 72d41154b1be8a7a6bb23ccf56bd308576deaf0c16a1cb1e3b24d3a69d58001f 30500 krb5-kpropd_1.20.1-2+deb12u2_arm64.deb 45103ec4180d5396c4505653155d70b8c97d912c593670d8f7be7434a2edb742 125024 krb5-multidev_1.20.1-2+deb12u2_arm64.deb ec87f2885579cd16530ac8d617527ec742fb3b66b3160b58fd1d0714138b00e1 29040 krb5-otp-dbgsym_1.20.1-2+deb12u2_arm64.deb 86255a1ca443827670cabf09e069412a203a5090adf535c66017ea9f5b52f4ad 21060 krb5-otp_1.20.1-2+deb12u2_arm64.deb d3fafa26c4fa977db3304f76654166113f556d6d4561b5f367d2e505e089c575 155932 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_arm64.deb 825e9f0f8aaa542aa18c052e12828cc5717063a48414c3cebc643439db853e29 53760 krb5-pkinit_1.20.1-2+deb12u2_arm64.deb 0d361a141237008bb230c2ef38f04f53bfec6ea4dd76558799fbf310b7eb6407 201880 krb5-user-dbgsym_1.20.1-2+deb12u2_arm64.deb db1e3a3b5a94205f2268a0341c55fce13911b382762609727eb02a1fa1a8f76a 115576 krb5-user_1.20.1-2+deb12u2_arm64.deb 7f812464b87991649df5abad54b3ef30670b16d725e600af3f0c5e38ca166302 15849 krb5_1.20.1-2+deb12u2_arm64-buildd.buildinfo b45d45af61d01bc2ec9418de43a0cd68b335eac09dcedfa50b51a4886050d719 123740 libgssapi-krb5-2_1.20.1-2+deb12u2_arm64.deb 68e45d35f848446e45b48021c70b9b42f753984737fbc94ea387b243fa78d9fd 55332 libgssrpc4_1.20.1-2+deb12u2_arm64.deb e10046d423820bff3e7aa9fda0f9f1a5344c2c4222db3ac539a606165c8275b6 79408 libk5crypto3_1.20.1-2+deb12u2_arm64.deb c5ba00e1107b1bd79767606ed07965394a2cb926d176273d17e72297c007a64e 39324 libkadm5clnt-mit12_1.20.1-2+deb12u2_arm64.deb cefaee9517a6046eb321d13d5a6544a92cab98acd05abb2295e15b91eed1aee0 50984 libkadm5srv-mit12_1.20.1-2+deb12u2_arm64.deb 325c0a563dfbdfc1db5283937d608b93d74d5e7ce2210174787adc28784dfc5b 39440 libkdb5-10_1.20.1-2+deb12u2_arm64.deb c3fce8cc222489150c77dbb45de190022651bba60413247ce3d995bd9c62e0f2 15292 libkrad-dev_1.20.1-2+deb12u2_arm64.deb 4aef33835821feb549efbdc9a19c71c6bf5557a0cd52e9da9cfb302bcc63423c 23820 libkrad0_1.20.1-2+deb12u2_arm64.deb 5896a3ca948d7c287e2eaa19baeec7cd6873fd9cdebeeea7f4069420da028185 313344 libkrb5-3_1.20.1-2+deb12u2_arm64.deb e72256fe3204a354cf378714f2bedc86c97f59ba4f4282f78fc9c2eb53cc8455 2130852 libkrb5-dbg_1.20.1-2+deb12u2_arm64.deb 4adb8b6f48ca1e82e8fdd44acff9da63893ae435ac9a68a225d2c53e96001328 14828 libkrb5-dev_1.20.1-2+deb12u2_arm64.deb b07c71b63b6db1b8afff17cff9a9abb36a1a80272ccba71be6768f72b640d52e 31824 libkrb5support0_1.20.1-2+deb12u2_arm64.deb Files: 83824e872c443f58970ce867565f29df 210828 debug optional krb5-admin-server-dbgsym_1.20.1-2+deb12u2_arm64.deb e5482ad5ce35147e7b02e4fbb96f229a 88808 net optional krb5-admin-server_1.20.1-2+deb12u2_arm64.deb 10f2645079ee2f31c5e2ceac9af665bf 39304 debug optional krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_arm64.deb a55f0d32887d3c8331beda5cb9093f0c 27488 net optional krb5-gss-samples_1.20.1-2+deb12u2_arm64.deb 233359aeb2e2d8a1231276ed8967c438 20108 debug optional krb5-k5tls-dbgsym_1.20.1-2+deb12u2_arm64.deb 5871d616866b241f3ea8005582401fe8 18964 net optional krb5-k5tls_1.20.1-2+deb12u2_arm64.deb 9c16d2438dc1a9512134a56352b44073 445956 debug optional krb5-kdc-dbgsym_1.20.1-2+deb12u2_arm64.deb c75b5fbf501075dc982f5d882317a80d 190908 debug optional krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_arm64.deb a218f3bb5a7fa1d34b185165ed572cc1 84924 net optional krb5-kdc-ldap_1.20.1-2+deb12u2_arm64.deb 1a3f3c8a19b74758f76eae97310c2e7d 171584 net optional krb5-kdc_1.20.1-2+deb12u2_arm64.deb c767ba400d3e6560d10fbb946e1738c2 43964 debug optional krb5-kpropd-dbgsym_1.20.1-2+deb12u2_arm64.deb 35dc8c455ec52effc6d426a4fac133c5 30500 net optional krb5-kpropd_1.20.1-2+deb12u2_arm64.deb 76c42124001c278b46bb14295d05dc60 125024 libdevel optional krb5-multidev_1.20.1-2+deb12u2_arm64.deb e7d9176df28cade71cc5f576a6dc9d17 29040 debug optional krb5-otp-dbgsym_1.20.1-2+deb12u2_arm64.deb d754a6d59682e45ce953e8b7ed177ee3 21060 net optional krb5-otp_1.20.1-2+deb12u2_arm64.deb 299b0ec225937be5fa791276403b9b3f 155932 debug optional krb5-pkinit-dbgsym_1.20.1-2+deb12u2_arm64.deb 8fdedc103d0a96cd4da505097b5611ec 53760 net optional krb5-pkinit_1.20.1-2+deb12u2_arm64.deb 7419254cebef868560096f063e67fec7 201880 debug optional krb5-user-dbgsym_1.20.1-2+deb12u2_arm64.deb 816475a7d412f46c2a4f1695236095fc 115576 net optional krb5-user_1.20.1-2+deb12u2_arm64.deb 2785107beefd1a23cf5bc91ba4d206a8 15849 net optional krb5_1.20.1-2+deb12u2_arm64-buildd.buildinfo 25ec9d4c77c57b2ff272f1e26ee2ee62 123740 libs optional libgssapi-krb5-2_1.20.1-2+deb12u2_arm64.deb 72ab18f968bedb6971f7d7f23cb769e5 55332 libs optional libgssrpc4_1.20.1-2+deb12u2_arm64.deb 6f981bcfc1dd78c66706da5e6afd53f2 79408 libs optional libk5crypto3_1.20.1-2+deb12u2_arm64.deb ff1ff9bf2773c9c90b484f28e002a20f 39324 libs optional libkadm5clnt-mit12_1.20.1-2+deb12u2_arm64.deb 6618c457182120d0147f379bbca9a807 50984 libs optional libkadm5srv-mit12_1.20.1-2+deb12u2_arm64.deb b2164e5cc5f7edf0bbb470d96b3c40f9 39440 libs optional libkdb5-10_1.20.1-2+deb12u2_arm64.deb 9ac7fb9ca6a4261148138f8aa1ebfe3f 15292 libdevel optional libkrad-dev_1.20.1-2+deb12u2_arm64.deb ebc8f259ebb3a9b0cf7ffef433024994 23820 libs optional libkrad0_1.20.1-2+deb12u2_arm64.deb 186aaf8320bec41753d9936caddd9bf1 313344 libs optional libkrb5-3_1.20.1-2+deb12u2_arm64.deb 075606534781cfcff004320be5bc8b6d 2130852 debug optional libkrb5-dbg_1.20.1-2+deb12u2_arm64.deb 659194bd1f161047ebd47966c3d16057 14828 libdevel optional libkrb5-dev_1.20.1-2+deb12u2_arm64.deb 645ae42e87e72297d44ab953461c0f68 31824 libs optional libkrb5support0_1.20.1-2+deb12u2_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEU81tY/BC8e+eAeWhLffeOnPnbLUFAmaDBjcACgkQLffeOnPn bLWTfhAAyaitFqxi+5p/DMctbUtTOBuiNmjSvzCj4WbCvOapn7Uui/CiS1BVBqaB vE1VxiF/u+xWcvad8mDV06G8q8hbDKfl5bFedxCREZja81RfZ5nH7OzM0WAmJYeH wywcsD3M4Dv0R2MuFpKQyYl1KFvdgBI3F2TEfBJtpBmjd8/tC+k+qW8Zj+Vfd/l5 Sl+EpT0gU6atGnSF7eQUYKt3kkBImocI/oXbKsFxgpGixKegTCtUmgHhgl7Xn/94 NsgVDHS5ZNeBFyX83a7rX1jagQWRZRbo3muqSZQOaqNjjR+m8b8b/NsYAZaEwyFh Nw1gdzym+JS+k9OZRrti2DqCuaai0pMeESb68TEXCqtUW/d6GT3SNczk2eobBOaF BIRGPT+NJPtbyDWbb7a3EFD36psteTuanUxl8ZYJCO9sslScAKZixvOAxeXd238E SXIlMppgMllQWIrfAzVO8RtUjHyLjM60fCwBFksmJz/l7AhxtNCRzDa2w+uz9vkr 9gB2sfRFYS+RNWnbdTCCYdipipb0rSXfHFGvbJkfi+GOc/7+HwiBP/isdKjghAhI O3WwLfiRcddQgaqJV6WswtK7/7F3xMBaxxdC3fkPDwt0+jj1sI7DOMxYBWMPmnlC 8UTfEnSWlEcVnAQKzD41rgg2OyoMKz9ZfknmwCibKAANIyk9xbI= =WoTo -----END PGP SIGNATURE-----