-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 01 Jul 2024 11:31:35 -0600 Source: krb5 Binary: krb5-admin-server krb5-admin-server-dbgsym krb5-gss-samples krb5-gss-samples-dbgsym krb5-k5tls krb5-k5tls-dbgsym krb5-kdc krb5-kdc-dbgsym krb5-kdc-ldap krb5-kdc-ldap-dbgsym krb5-kpropd krb5-kpropd-dbgsym krb5-multidev krb5-otp krb5-otp-dbgsym krb5-pkinit krb5-pkinit-dbgsym krb5-user krb5-user-dbgsym libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12 libkadm5srv-mit12 libkdb5-10 libkrad-dev libkrad0 libkrb5-3 libkrb5-dbg libkrb5-dev libkrb5support0 Architecture: armhf Version: 1.20.1-2+deb12u2 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-ubc-05) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-k5tls - TLS plugin for MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-kpropd - MIT Kerberos key server (Slave KDC Support) krb5-multidev - development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit12 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit12 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-10 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - debugging files for MIT Kerberos libkrb5-dev - headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Changes: krb5 (1.20.1-2+deb12u2) bookworm-security; urgency=high . * CVE-2024-37370: an unauthenticated attacker can modify the extra count in an RFC 4121 GSS token, causing the token to appear truncated. * CVE-2024-37371: an attacker can cause invalid memory reads by sending an invalid GSS token. Checksums-Sha1: e456e756a0fa80d3bfbcc60cfdbea15a582fb222 206676 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_armhf.deb e0e82fae44933ba481c73a7248dcf1b44a976fc8 84560 krb5-admin-server_1.20.1-2+deb12u2_armhf.deb 574933e21504f56994db695cb46f92b5afe7d5ae 37740 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_armhf.deb 32e9e02b8f6384defcb1971730d72835fe058bd5 26504 krb5-gss-samples_1.20.1-2+deb12u2_armhf.deb 1d554d309a915afd21b5975d55402081f7ada6f9 20232 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_armhf.deb 54a63dc2aeca692281e51d66f84cea3176620a5e 18020 krb5-k5tls_1.20.1-2+deb12u2_armhf.deb 0c34eb5314f546d961fd8b996f01be7aff76b544 453120 krb5-kdc-dbgsym_1.20.1-2+deb12u2_armhf.deb b6ddb0d0ed63173f4c9fd5ab12770bdd7fd9eee3 190296 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_armhf.deb 48819ef89bd1c42957f5a959be008c3501591df9 80152 krb5-kdc-ldap_1.20.1-2+deb12u2_armhf.deb 89781b9b7e6749efbb6c9303d17a78055beba01b 159308 krb5-kdc_1.20.1-2+deb12u2_armhf.deb 750b8f8cb859075e993e48d4ca360ede8d5ef0b0 45232 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_armhf.deb 4fdb9fe489e21002e5565332da2242c9876f497f 30696 krb5-kpropd_1.20.1-2+deb12u2_armhf.deb 508baf1969a2189dc209181f06756d0c20fb6123 125040 krb5-multidev_1.20.1-2+deb12u2_armhf.deb 1c01596418f12c178427455bfdd031cb73cadbac 29376 krb5-otp-dbgsym_1.20.1-2+deb12u2_armhf.deb b73efbbd2d28fb6fef334e3a057e048b9240f735 19996 krb5-otp_1.20.1-2+deb12u2_armhf.deb ca1621a7e7222a6fe70628881de4d0d80fef7c77 152788 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_armhf.deb 37a4c7d411c97963c837b6bbb6caf2b2483deea6 48976 krb5-pkinit_1.20.1-2+deb12u2_armhf.deb 91daf139217ad4408887b0d2be9648fdb48b5e55 197680 krb5-user-dbgsym_1.20.1-2+deb12u2_armhf.deb 596816a34ec2bd46a9b24c37a44a40cf8ce9268b 112552 krb5-user_1.20.1-2+deb12u2_armhf.deb 825b1c2a494dd250825d7b3d136207430451a325 15725 krb5_1.20.1-2+deb12u2_armhf-buildd.buildinfo 0c0f45a8847fccf53223053e443efa1670cb5c39 111348 libgssapi-krb5-2_1.20.1-2+deb12u2_armhf.deb 503d2872d1573c3c14a4a674405db6f092dcb870 50680 libgssrpc4_1.20.1-2+deb12u2_armhf.deb 9e0b0dba92e7d9ae702a46e6c7b8d4bc6039889c 74688 libk5crypto3_1.20.1-2+deb12u2_armhf.deb 54a6372a28fc70fca47b7fc57e96f4b7d97284e5 36080 libkadm5clnt-mit12_1.20.1-2+deb12u2_armhf.deb ccfe34811d7f4e11d0fd9aab743746972e5b0aae 45804 libkadm5srv-mit12_1.20.1-2+deb12u2_armhf.deb d6dd482573d6f3e54578288d6a0e1ff1615c6c2e 35664 libkdb5-10_1.20.1-2+deb12u2_armhf.deb 1ee837a1192c6971e910329c1e210fecc608813d 15300 libkrad-dev_1.20.1-2+deb12u2_armhf.deb f5b9d84cc13fd7ddf958fdcc9ae9d2bb76c74ef1 22308 libkrad0_1.20.1-2+deb12u2_armhf.deb 91aa59a92c8bc1eb7cb9b41a88e178d4ad77a1d1 287660 libkrb5-3_1.20.1-2+deb12u2_armhf.deb d90fce103d2611df298db646a15beef8a03e07ba 2154632 libkrb5-dbg_1.20.1-2+deb12u2_armhf.deb beec42d4e51295084418864da6c9f8bc3f26ed97 14844 libkrb5-dev_1.20.1-2+deb12u2_armhf.deb a892b305fd7b87096452e4e5f23171b6b4feb79e 29508 libkrb5support0_1.20.1-2+deb12u2_armhf.deb Checksums-Sha256: 4045a7a83e624b9b78abb6eeeebf56221030ae7fc8ed43228a541f2efda92b38 206676 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_armhf.deb e1bb168c293e1b2f3b5def30c9ca27e3a490f8cfc92078cbaf013442c62976a7 84560 krb5-admin-server_1.20.1-2+deb12u2_armhf.deb 41998b37a60e6f5854be48611fa9b53fffb1849c280f6f3baa96846835f41353 37740 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_armhf.deb 0370d866f64cf4623df5647ff5624fb55ef61ca9e646eb23385edcb43e77f2ea 26504 krb5-gss-samples_1.20.1-2+deb12u2_armhf.deb fa2ab2ab96e6ccbf1598fe12f0d15622c776949aafcd07eb4bcf94846b63cbe1 20232 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_armhf.deb ba23ddaa9d8c84c3b88b82ada245a063567783707214709691e17c2847b66065 18020 krb5-k5tls_1.20.1-2+deb12u2_armhf.deb 86a1a011285d7b213d2560af246d0dc3f9b8139eaa748750a3ceda45eba27b5c 453120 krb5-kdc-dbgsym_1.20.1-2+deb12u2_armhf.deb 4f9bf6c574ce255467514505b8c9ded79776b91d93cc971b102073ac03439d65 190296 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_armhf.deb a067bb9d6c365604400c003c37f707cc1cbb27e63289a236f784786cb5d289c4 80152 krb5-kdc-ldap_1.20.1-2+deb12u2_armhf.deb 63d612ba98cf1587a7eee3061566130bacd9c7e0dad508ffded5f7b3616cab1e 159308 krb5-kdc_1.20.1-2+deb12u2_armhf.deb d7da90abd91c935f4c129c6184f6743fd8e2df03bf03e5cd3b258f5db7f1149b 45232 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_armhf.deb 38396aa37a4038c3234ef2106d1e2fd425ec2b61fb0ef600408896cfebc2e857 30696 krb5-kpropd_1.20.1-2+deb12u2_armhf.deb dcc6fa3d0ddc5ca6b50e4556a37bb637466dc2778f6ac0ba626d24b2beb20f05 125040 krb5-multidev_1.20.1-2+deb12u2_armhf.deb b40551519d33b368ad32f7641b03ac95dce705964197252ee1f9ab5a3ad559b4 29376 krb5-otp-dbgsym_1.20.1-2+deb12u2_armhf.deb 2af573d443cb90f14fe53ec0a780647ca5cd65940e2c987dcf9da4226dc74198 19996 krb5-otp_1.20.1-2+deb12u2_armhf.deb a98b444954bca3ed57f7122917d9622bd37fd09131b1a937e324be1074c82ce0 152788 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_armhf.deb 8a961c51b817205966fda78d7d74a61dadff11bfb793833a8e491ab35de9f440 48976 krb5-pkinit_1.20.1-2+deb12u2_armhf.deb 4376a791562471ac072b792881175aabdc9b6ef4fcbac351822c6877339b8ea4 197680 krb5-user-dbgsym_1.20.1-2+deb12u2_armhf.deb 0535ded42ce600c80cf63fc80ff920b7be022b51666e5a5bad83cb9140180212 112552 krb5-user_1.20.1-2+deb12u2_armhf.deb 29e0f202f99bbfc32dd922c7830725cd517e101f7611cca924518795072656ad 15725 krb5_1.20.1-2+deb12u2_armhf-buildd.buildinfo 41a14029a724609cd6f94936514dde219e5bde253049520f3211081a1b2c9722 111348 libgssapi-krb5-2_1.20.1-2+deb12u2_armhf.deb b7cb879d474cb349ade335b0b6d5a090dbec76594f328f6ec35f7d7898d28cd7 50680 libgssrpc4_1.20.1-2+deb12u2_armhf.deb 25dd16a24777c6a2e7eba5d3e21268c5bc596b1fe4fb74b12634f15184c7320c 74688 libk5crypto3_1.20.1-2+deb12u2_armhf.deb a422bcdfb2c2cf187d0aaf06ad2669ce7081403b3ad4d21e3af833bae45afe4f 36080 libkadm5clnt-mit12_1.20.1-2+deb12u2_armhf.deb 5697a2a88bdd1b9e925b1d6e8ae07e20a9f1da1271a7b373b789f30742bc8856 45804 libkadm5srv-mit12_1.20.1-2+deb12u2_armhf.deb 7b2ce09bec313e4726d0b1cd5e4bc158eeae9890f05110d3c1e3da83ca1ddcbc 35664 libkdb5-10_1.20.1-2+deb12u2_armhf.deb 8d5cb832a6bf58ba422c1a3249b17442d9b99c3ac499595a30a0ba76e4626b91 15300 libkrad-dev_1.20.1-2+deb12u2_armhf.deb a0336f6d6b2b17ab82c8b29f9b860efdeb4be41487065195fd5bbf6b96d3aa24 22308 libkrad0_1.20.1-2+deb12u2_armhf.deb 7629959854e0347c32ce76c3edf030d97d75fb397854aa793fae7755a39dda8d 287660 libkrb5-3_1.20.1-2+deb12u2_armhf.deb 9f25e006060ae4c4ccc69849eb6b2a1554cefda0837fa33aa14f1e404f716f8c 2154632 libkrb5-dbg_1.20.1-2+deb12u2_armhf.deb 62157d9981242b88946402b25de1034424a1b57dff4dd532dfadf3c9a0db5c79 14844 libkrb5-dev_1.20.1-2+deb12u2_armhf.deb 58d6910eb05782985a79161544248cc6ad65e9f44970b7c58bf12bf5a36114d9 29508 libkrb5support0_1.20.1-2+deb12u2_armhf.deb Files: b47a27c5142ab4dd4f693d8e9befead5 206676 debug optional krb5-admin-server-dbgsym_1.20.1-2+deb12u2_armhf.deb 6b1a7f9382fa17806b6249f5059cd7ef 84560 net optional krb5-admin-server_1.20.1-2+deb12u2_armhf.deb 3820f09e6c7c967f361012b379f93f82 37740 debug optional krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_armhf.deb 4db9852d05bf082c30ba71cebad1a095 26504 net optional krb5-gss-samples_1.20.1-2+deb12u2_armhf.deb a5a13d1c3b652bf3aac210cda110e0df 20232 debug optional krb5-k5tls-dbgsym_1.20.1-2+deb12u2_armhf.deb 2b1a2716da9a1cfaae43cd4448c5841a 18020 net optional krb5-k5tls_1.20.1-2+deb12u2_armhf.deb 1fbbff60deb5c17f822ec134e25bfbc8 453120 debug optional krb5-kdc-dbgsym_1.20.1-2+deb12u2_armhf.deb d06e2dc46c1711f47ce960c32d977cb8 190296 debug optional krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_armhf.deb e3dc0d26c65ca25432a6c2024fb6e78f 80152 net optional krb5-kdc-ldap_1.20.1-2+deb12u2_armhf.deb a3cc5074507515b1347df24c0ba1d23b 159308 net optional krb5-kdc_1.20.1-2+deb12u2_armhf.deb 8c9542c2bd8630c98c4274fd95fa1754 45232 debug optional krb5-kpropd-dbgsym_1.20.1-2+deb12u2_armhf.deb 74bfb56b037129e99fdfbef8c780eaf8 30696 net optional krb5-kpropd_1.20.1-2+deb12u2_armhf.deb ccdedd55033ad7346ee27e215f5a7462 125040 libdevel optional krb5-multidev_1.20.1-2+deb12u2_armhf.deb 220286e9cac27353e6a2bd4107685d20 29376 debug optional krb5-otp-dbgsym_1.20.1-2+deb12u2_armhf.deb 5059acc6c502aff3e8d271cac1bc11c9 19996 net optional krb5-otp_1.20.1-2+deb12u2_armhf.deb 4879f5091339e9f4299518775ed5d2d0 152788 debug optional krb5-pkinit-dbgsym_1.20.1-2+deb12u2_armhf.deb 47ad844d1ea42130e086e22a6169610b 48976 net optional krb5-pkinit_1.20.1-2+deb12u2_armhf.deb 271201d91594894e9e5e8f464904a925 197680 debug optional krb5-user-dbgsym_1.20.1-2+deb12u2_armhf.deb 7e85ddfd90904bed47bfb2442f1086e3 112552 net optional krb5-user_1.20.1-2+deb12u2_armhf.deb 90dfe7fa1cc1b1e8ef6adc33d7e6f077 15725 net optional krb5_1.20.1-2+deb12u2_armhf-buildd.buildinfo 4b2c9105bcad6f43f19cc29639eb06f3 111348 libs optional libgssapi-krb5-2_1.20.1-2+deb12u2_armhf.deb 8fd006ce4074d0780f8ee42205061e26 50680 libs optional libgssrpc4_1.20.1-2+deb12u2_armhf.deb 95379f7ac0e66f2158b2809ca9809cc6 74688 libs optional libk5crypto3_1.20.1-2+deb12u2_armhf.deb 0d20e10eb3ea173b02b753ac8fd781e0 36080 libs optional libkadm5clnt-mit12_1.20.1-2+deb12u2_armhf.deb 37ae0cefb8b9d94f7b0d09242858e4dc 45804 libs optional libkadm5srv-mit12_1.20.1-2+deb12u2_armhf.deb bdeb58579d1e58fe854f490679e67a94 35664 libs optional libkdb5-10_1.20.1-2+deb12u2_armhf.deb 8b022bed51ca28cb639ef4304d233568 15300 libdevel optional libkrad-dev_1.20.1-2+deb12u2_armhf.deb 2f213218a1abdaaa4f578ff89335ea50 22308 libs optional libkrad0_1.20.1-2+deb12u2_armhf.deb d019426c89a1061deb9967a68c0ebd23 287660 libs optional libkrb5-3_1.20.1-2+deb12u2_armhf.deb b052ea02ccb088513f48d0e2ffef582b 2154632 debug optional libkrb5-dbg_1.20.1-2+deb12u2_armhf.deb b14aebd88440bc86c62bffc0cbbc4a36 14844 libdevel optional libkrb5-dev_1.20.1-2+deb12u2_armhf.deb 6bf6bf188e5ef42d22f64cf994610927 29508 libs optional libkrb5support0_1.20.1-2+deb12u2_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEmbvtGd+QaAE2Bi5fsFgOvjtRcdMFAmaDB3oACgkQsFgOvjtR cdO7JA/+JTTOyzBVKXSJxrSriwLCN2wXK5J8h/gAOapRMAjeVWn0iCifJ3gVrIVe Wg1bfZxoaXTgG3a3ifjAKMseCcGpTFdgqkXpx54IXQQAjzeem+7ZfcjkP+gObDQ1 w/hT+Ur1rzrmGFzjAU9z/9Cp4qaptQcBMwfnkREzNQdu7QO+ayjVYDB1oTB49Wfr WxbG9ItW/J/o0LB9F3Npnmlgd1EDHuHSUFlwpKxagUxDgEs4aGhZJig9qLzpuPft CrFYZE/ROuIGF29ODLuZe5HEQe4j9A/vxxVwoGw/F5Mtfl8E5FpXWDCg3L9fA+BD xzTGk6nedG5NJXSfGzXMb53QmvSmDvKbib/wl7yEit1gggD76YZTUJGJohwl/Ebe +TZM+kCNqEKQ68rkZ2Keeo5rnLLwtRoKidd5kNvjOoDLkIRhfKlzuXg1DtLpAlIN BV90uHJ+A7zllez9SztClLbbOQ7RRCrJgsUhdxR70F/sVUU5hLjeeYQNYpBX8MC1 c9NkFDhmjjdfuTv9469BTnOCyjBd+BxNLYsf5tUK7xgTm6yi6jwDCbIPPiM8WKd5 bxCuvy9AXg/34LMc9yScXx+e87DYoCF6NlttFHD7Q7UMjfVQq8p7cq6w8OYi/9YL LYoxHW5MarVtkrx7gdhwDrLA13UROByD3Q5jU2LjUclmggBVX24= =Csul -----END PGP SIGNATURE-----