-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 01 Jul 2024 11:31:35 -0600 Source: krb5 Binary: krb5-admin-server krb5-admin-server-dbgsym krb5-gss-samples krb5-gss-samples-dbgsym krb5-k5tls krb5-k5tls-dbgsym krb5-kdc krb5-kdc-dbgsym krb5-kdc-ldap krb5-kdc-ldap-dbgsym krb5-kpropd krb5-kpropd-dbgsym krb5-multidev krb5-otp krb5-otp-dbgsym krb5-pkinit krb5-pkinit-dbgsym krb5-user krb5-user-dbgsym libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12 libkadm5srv-mit12 libkdb5-10 libkrad-dev libkrad0 libkrb5-3 libkrb5-dbg libkrb5-dev libkrb5support0 Architecture: mipsel Version: 1.20.1-2+deb12u2 Distribution: bookworm-security Urgency: high Maintainer: mipsel Build Daemon (mipsel-osuosl-03) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-k5tls - TLS plugin for MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-kpropd - MIT Kerberos key server (Slave KDC Support) krb5-multidev - development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit12 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit12 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-10 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - debugging files for MIT Kerberos libkrb5-dev - headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Changes: krb5 (1.20.1-2+deb12u2) bookworm-security; urgency=high . * CVE-2024-37370: an unauthenticated attacker can modify the extra count in an RFC 4121 GSS token, causing the token to appear truncated. * CVE-2024-37371: an attacker can cause invalid memory reads by sending an invalid GSS token. Checksums-Sha1: cffdce68515eb5a2412b5767a5864942cf20a6a8 211852 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_mipsel.deb 32e7b4bc7a0b92da6e57c3f76b9085e25e7e40d5 87072 krb5-admin-server_1.20.1-2+deb12u2_mipsel.deb d324cfb3945429562943f8600c04c1940fa6b1f2 38420 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_mipsel.deb 1fc497982b2114771cd6e53114e705cbcb4280c6 27728 krb5-gss-samples_1.20.1-2+deb12u2_mipsel.deb 6090260bab03dc49056bace27ef2e9acc14c492f 20556 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_mipsel.deb b433b49c49ae1fbadbbcdfe1cb6eed577eb8fb7e 18612 krb5-k5tls_1.20.1-2+deb12u2_mipsel.deb a0b35eba6f453f8d107e089d0cb1db1a1a579f6c 465520 krb5-kdc-dbgsym_1.20.1-2+deb12u2_mipsel.deb 7bd1414c665b6e43e54573a0da6ed7cec2248087 191872 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_mipsel.deb fb34a80afd4b2814a67c17a039052bf0ca2c81be 80700 krb5-kdc-ldap_1.20.1-2+deb12u2_mipsel.deb dd91d6404be3db57044f74f27947b97598702c0c 172224 krb5-kdc_1.20.1-2+deb12u2_mipsel.deb a13a856244fdc07038aa257b94e2f84cad73a966 45512 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_mipsel.deb f59c735a5563273512532da46681a197edd28ef0 30592 krb5-kpropd_1.20.1-2+deb12u2_mipsel.deb 62c531994681c076473b0ef497bce519faa37131 125020 krb5-multidev_1.20.1-2+deb12u2_mipsel.deb 3298468bbf42e57387bf40298c94fa0612fab7e5 29928 krb5-otp-dbgsym_1.20.1-2+deb12u2_mipsel.deb 9850020abe51e2f4f91ed8c5367b2ba3a27fbc32 20972 krb5-otp_1.20.1-2+deb12u2_mipsel.deb d630cfbb432d2a2cf72431e653cc0c0baf7c415a 156436 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_mipsel.deb dec2625031d014e419e2b457040d7100ad42dfd8 52224 krb5-pkinit_1.20.1-2+deb12u2_mipsel.deb 5342d8acfc27931a85b2d2e0c69d4462ec6be43d 200804 krb5-user-dbgsym_1.20.1-2+deb12u2_mipsel.deb 25ac5d238147d79eb3671d53d1156abea24fc1b9 113828 krb5-user_1.20.1-2+deb12u2_mipsel.deb d4b0099c5ab284b335ed4910f60e5af6e352c841 15766 krb5_1.20.1-2+deb12u2_mipsel-buildd.buildinfo 97d33530f7ce6d1288a3cce3f8a2fe0c6d4f8f64 117756 libgssapi-krb5-2_1.20.1-2+deb12u2_mipsel.deb d8738bb5d9787a181ca228260e1032c1c01e4e88 52268 libgssrpc4_1.20.1-2+deb12u2_mipsel.deb 2ac55ee3a24c98e332f411ca329a9653dacbdb0f 84296 libk5crypto3_1.20.1-2+deb12u2_mipsel.deb 572f1334a21bfd9102681e582404ec8324158739 37276 libkadm5clnt-mit12_1.20.1-2+deb12u2_mipsel.deb 87e928446e4530a43e678748b8097f42588274b7 47664 libkadm5srv-mit12_1.20.1-2+deb12u2_mipsel.deb f842c38d24fbc6f16a43cd78433d4e533085b546 37180 libkdb5-10_1.20.1-2+deb12u2_mipsel.deb 319472edd4f2e6bd742e179540e1a44685b58b2f 15296 libkrad-dev_1.20.1-2+deb12u2_mipsel.deb 039bb094243027739f019488de22343e0b803643 23296 libkrad0_1.20.1-2+deb12u2_mipsel.deb 10291e8daf3b6cb34d17430c2366cf3b5757e25b 303080 libkrb5-3_1.20.1-2+deb12u2_mipsel.deb eae8bd2bd9f751aa8f1fdc2a2cf3cd7c72585699 2203124 libkrb5-dbg_1.20.1-2+deb12u2_mipsel.deb 836d08a742c03c42328991ec1a5762d4355aa70f 14820 libkrb5-dev_1.20.1-2+deb12u2_mipsel.deb ea2da1ffbb5911524d9f447a64d94c72e91c7d23 31680 libkrb5support0_1.20.1-2+deb12u2_mipsel.deb Checksums-Sha256: e7f1439aae504c41fd6f622a08aa5b8e94e466b17011a5c7377de3071ec6a107 211852 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_mipsel.deb 1b7e30eb517d976463de06133769c7f3d39e8048beef2870bb3d10a4e164542d 87072 krb5-admin-server_1.20.1-2+deb12u2_mipsel.deb 178e1c7422f7d32e5ae93c2781b31797276be4ec3d84694a3cdd6662bc02a76c 38420 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_mipsel.deb ed4525cb7bac2afb7cb9df1e91ef7f44cacebe63eb68a2cb577531ee883fabea 27728 krb5-gss-samples_1.20.1-2+deb12u2_mipsel.deb 114c8a0ca4c99ff6d0dc98d230b4f623ed46aa6894cf687edfd26a8c2cae0f3e 20556 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_mipsel.deb b3828d92c0e0e90d511c1f514aa8aa0ba7029e8dd44e4d0e8980f2ae7898851c 18612 krb5-k5tls_1.20.1-2+deb12u2_mipsel.deb 1802ff0a21672c19ee39d13507f8031d8c4c62bae339809517ecc0b8ec8ca97c 465520 krb5-kdc-dbgsym_1.20.1-2+deb12u2_mipsel.deb 91b2ba4b2c152f116c47228a0c99a4953c6cde4404694e9d225b127cf12b8605 191872 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_mipsel.deb 19e4082c9d0279ab319307e963bc2b3841a99dd03e1dbec848c7b79b43431857 80700 krb5-kdc-ldap_1.20.1-2+deb12u2_mipsel.deb dbdc5ed52516ee420c900a3fd55f1a58e13eb951446fe4e5bd21273c1a0c2b3b 172224 krb5-kdc_1.20.1-2+deb12u2_mipsel.deb 6735033e9779818cc333f18af6b800919beb30bf2299a5c4c2f98925905c3d5f 45512 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_mipsel.deb d9f0d049a8ec590a240088c6dd175f788950ee8a2778cc65c11224aa2e4c6f5a 30592 krb5-kpropd_1.20.1-2+deb12u2_mipsel.deb 6b23cbbabfc1021d43af6ce7aadba6d90a29376e539b3525d72674b10b9b65ef 125020 krb5-multidev_1.20.1-2+deb12u2_mipsel.deb 1a188468400c8f298ec8ab8905d9a3c4ec171984c28280f65d6535ff59b74cd3 29928 krb5-otp-dbgsym_1.20.1-2+deb12u2_mipsel.deb 7b71bedce117863eb0ee2dafb9445534082005f2f17393f348abc41412d3838f 20972 krb5-otp_1.20.1-2+deb12u2_mipsel.deb 0c7219343561db348036945c018fc6a62553a88b4b6bcaeea98b57cc50199a26 156436 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_mipsel.deb bdbcbfe65f338ecd6a8e7deb0a7db73f5af2d2288fa9d3cc990e3b7e6fbb3d38 52224 krb5-pkinit_1.20.1-2+deb12u2_mipsel.deb ff0154eafeda0ad24971468547c26e9cc258d3874fb6b6d881720a1d6cd1394b 200804 krb5-user-dbgsym_1.20.1-2+deb12u2_mipsel.deb 25a73bc79d6a48a796ffb81d39c5679ae17f6e42fa2bf100ebbf10909f0dff93 113828 krb5-user_1.20.1-2+deb12u2_mipsel.deb 7d7f92a6ac6846a83c933338bc23aa93c1a78a349ed5ae1e73e061707e8b2ebe 15766 krb5_1.20.1-2+deb12u2_mipsel-buildd.buildinfo 0d6fc568ee91b54771c7493f84f1eaadd236bbaf0cce1e87a786be2396a4ba47 117756 libgssapi-krb5-2_1.20.1-2+deb12u2_mipsel.deb c7b2632dfce08edd825cd1ff6f862941c84d31a9fb555b633131065bf0b9d545 52268 libgssrpc4_1.20.1-2+deb12u2_mipsel.deb a821177e64f02fe0b3e7eb9fa0859714d390d838c8d6da8b4a437cb643b909f6 84296 libk5crypto3_1.20.1-2+deb12u2_mipsel.deb a73b96d4cfedd50b81c6d6c8a5bbee3e5c0fbf74daa178fcec8273651344b751 37276 libkadm5clnt-mit12_1.20.1-2+deb12u2_mipsel.deb 54079037d57b9d01620747799e74535d21fa39e8480c04e73979ef717bb78f4a 47664 libkadm5srv-mit12_1.20.1-2+deb12u2_mipsel.deb b95a2e887094637ef46ba81a1b7cc1901b61110d12af4d60644e934f7d862f29 37180 libkdb5-10_1.20.1-2+deb12u2_mipsel.deb ee9ae47be8d6538126cb93d3c27ac82a5cd8f8d599b6d89571af371eae1146ea 15296 libkrad-dev_1.20.1-2+deb12u2_mipsel.deb cc310fdd2ac2570d51a31bee0072c0b64d7385fe486691679237c52758cd13a6 23296 libkrad0_1.20.1-2+deb12u2_mipsel.deb 8c05db1168e62acf035e1b9b5563294ed4a9249cacb84910547f9a858e3f38db 303080 libkrb5-3_1.20.1-2+deb12u2_mipsel.deb cdc6bcdea2c04cf5aad8ca373513e54b03559b0b34b1a66adc85df5ec06937e7 2203124 libkrb5-dbg_1.20.1-2+deb12u2_mipsel.deb 7c3669312af8f3120e5eeb452a57125e0d7d37b6eeaafdb5ffe8861772af0742 14820 libkrb5-dev_1.20.1-2+deb12u2_mipsel.deb 9d77f6edde06d12e62c95cc09c4278e688444fcdb1e184dbebe35e96f77fb1aa 31680 libkrb5support0_1.20.1-2+deb12u2_mipsel.deb Files: efabaeabebf9f6dc85389c8e149ca81b 211852 debug optional krb5-admin-server-dbgsym_1.20.1-2+deb12u2_mipsel.deb c15e62a35f3b97a543c1738d17440c80 87072 net optional krb5-admin-server_1.20.1-2+deb12u2_mipsel.deb 1141c07439e4f05c010f38f8499effcf 38420 debug optional krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_mipsel.deb 68196cc1068400cc4430c9de06a3e396 27728 net optional krb5-gss-samples_1.20.1-2+deb12u2_mipsel.deb d9263886ce00a27ec9c474d8ddcc7510 20556 debug optional krb5-k5tls-dbgsym_1.20.1-2+deb12u2_mipsel.deb 06077e6b32c7ca38c1bdf62b4b07e6be 18612 net optional krb5-k5tls_1.20.1-2+deb12u2_mipsel.deb dc6d9c9a28dc1d5f0334be3e4701c6e6 465520 debug optional krb5-kdc-dbgsym_1.20.1-2+deb12u2_mipsel.deb 645d4949447884e4e43d7ea8c7574884 191872 debug optional krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_mipsel.deb fb2901242f2cdb00ad0a4e282f0a2591 80700 net optional krb5-kdc-ldap_1.20.1-2+deb12u2_mipsel.deb af5a829d9907593d44b0459adad20aba 172224 net optional krb5-kdc_1.20.1-2+deb12u2_mipsel.deb dc7f77bc300b255faa28bf7fc4328b16 45512 debug optional krb5-kpropd-dbgsym_1.20.1-2+deb12u2_mipsel.deb e0b7a8f6db85c32939d5aa8ea956897c 30592 net optional krb5-kpropd_1.20.1-2+deb12u2_mipsel.deb c273e54e31b285955928a1b67b06d1b6 125020 libdevel optional krb5-multidev_1.20.1-2+deb12u2_mipsel.deb 79345e167783cf29a1ab1fdfdbdd9a59 29928 debug optional krb5-otp-dbgsym_1.20.1-2+deb12u2_mipsel.deb b1cbcce0f32ca7c216da541d43fca569 20972 net optional krb5-otp_1.20.1-2+deb12u2_mipsel.deb 2424f9b75c7df1635020f8c98aa810c6 156436 debug optional krb5-pkinit-dbgsym_1.20.1-2+deb12u2_mipsel.deb 83d15773cdab81daa33a37e26818bce8 52224 net optional krb5-pkinit_1.20.1-2+deb12u2_mipsel.deb 28eb2552c06ea1dc2bb36c1387b14418 200804 debug optional krb5-user-dbgsym_1.20.1-2+deb12u2_mipsel.deb 88d7f2b1f57671dfb2c02f5b578f1dfb 113828 net optional krb5-user_1.20.1-2+deb12u2_mipsel.deb 8bc653ffcda072c3577976ea7e7877ee 15766 net optional krb5_1.20.1-2+deb12u2_mipsel-buildd.buildinfo 6cec43d17876521219ebb9b15d0ec755 117756 libs optional libgssapi-krb5-2_1.20.1-2+deb12u2_mipsel.deb 195e26a954a3ee464c3a2494e836689c 52268 libs optional libgssrpc4_1.20.1-2+deb12u2_mipsel.deb 63d9f8eed82bb091912c782174f3c492 84296 libs optional libk5crypto3_1.20.1-2+deb12u2_mipsel.deb 7a492e9193b0ad7ba4ce6334e23bbde0 37276 libs optional libkadm5clnt-mit12_1.20.1-2+deb12u2_mipsel.deb 436de42d83ad1ddcb8339407bf0224c7 47664 libs optional libkadm5srv-mit12_1.20.1-2+deb12u2_mipsel.deb 058f521ee074ecfbf713aaf0a8453389 37180 libs optional libkdb5-10_1.20.1-2+deb12u2_mipsel.deb 1be6154f9bb496ff90655f4987602c10 15296 libdevel optional libkrad-dev_1.20.1-2+deb12u2_mipsel.deb 096bd380bea793ae7a8f7b11e4173991 23296 libs optional libkrad0_1.20.1-2+deb12u2_mipsel.deb adb15387fcc26b96e1079b3b2a448b82 303080 libs optional libkrb5-3_1.20.1-2+deb12u2_mipsel.deb 01a9762797967898ea4c8b0f3c048130 2203124 debug optional libkrb5-dbg_1.20.1-2+deb12u2_mipsel.deb 3cd6591906434535f5bbe6084deb4d1d 14820 libdevel optional libkrb5-dev_1.20.1-2+deb12u2_mipsel.deb 3e97d405eb218dfc3d69f91ed99940b4 31680 libs optional libkrb5support0_1.20.1-2+deb12u2_mipsel.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEunmvxaaGKuI+hxxClmZGXOM83t8FAmaDRa4ACgkQlmZGXOM8 3t/szA//T+N+ndsw/kh5yszf5OOHTLdsHyfS9XyfvBx3zIa3Q1f2xuO+p2e7CFUU vbNUGt5OTzRSozX+iEcHU8P8F8bdfDfKktp0HZoTXpj8yKFcvSqrSLzM4WFZcfGT kj3UxK5E1S3MnxJojmHLO/VfTD7xnT1tvoq33TGqjTa+fh8OUDLYfYskthmXeedp PMIjkQxXdr6/H7ADMB5yURrewZX82zX4j8E39G+fErgVQRU3p/4qOm/hvT3Do10f spxGFUwZPJ5k8NzF3R7btcpz3vslR8BphfJlpHB9kDBT3Ukqr9TFb1uKV60pQab5 8moEgYlkwExgwo1P2EeN704/nl/g7FchjyxZaANNJnMVMjZ96c/th+uycFzC69jS TIiBteCMA4YpMo58miAesuVCaOAvRsJSYAOGjOimgM5ksdjnrpu814QkpPyKvk2+ sWGa9OZZTxUBzOW8zSgEFe2uSuPruhvIkAYQKsn7wD6q2tJWWvA/WS2AvBppNuF7 ZroDJPvqWhAgsddjINbNngybEkL5KowpcQ6/2jcHOTftA1ufAbCYvJoBIHO7IWb6 sCuxEpAsXXvlG8e3yiusyWFQ44hJffmCVW4A+rQyMX825SkooYEUzagbjPJyZiDS awzjqkKO5iHzOdyY5SKSDp2zWVQdxhkONgLpoF/jCDABYNNHptI= =aEh0 -----END PGP SIGNATURE-----