-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 01 Jul 2024 11:31:35 -0600 Source: krb5 Binary: krb5-admin-server krb5-admin-server-dbgsym krb5-gss-samples krb5-gss-samples-dbgsym krb5-k5tls krb5-k5tls-dbgsym krb5-kdc krb5-kdc-dbgsym krb5-kdc-ldap krb5-kdc-ldap-dbgsym krb5-kpropd krb5-kpropd-dbgsym krb5-multidev krb5-otp krb5-otp-dbgsym krb5-pkinit krb5-pkinit-dbgsym krb5-user krb5-user-dbgsym libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12 libkadm5srv-mit12 libkdb5-10 libkrad-dev libkrad0 libkrb5-3 libkrb5-dbg libkrb5-dev libkrb5support0 Architecture: amd64 Version: 1.20.1-2+deb12u2 Distribution: bookworm-security Urgency: high Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-k5tls - TLS plugin for MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-kpropd - MIT Kerberos key server (Slave KDC Support) krb5-multidev - development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit12 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit12 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-10 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - debugging files for MIT Kerberos libkrb5-dev - headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Changes: krb5 (1.20.1-2+deb12u2) bookworm-security; urgency=high . * CVE-2024-37370: an unauthenticated attacker can modify the extra count in an RFC 4121 GSS token, causing the token to appear truncated. * CVE-2024-37371: an attacker can cause invalid memory reads by sending an invalid GSS token. Checksums-Sha1: 183592f53eb50ff54cd83640cdc5e282fe5dc2a3 212856 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_amd64.deb dcec0533fa5dff78cb51877b0f6b049a6b01fdf1 93600 krb5-admin-server_1.20.1-2+deb12u2_amd64.deb 6640fa1ecaa2a0a17e16b2990946cede3b0c3a0d 39492 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_amd64.deb 2ca73ede6f200f08f3e795cb49087f9b8e54442a 28264 krb5-gss-samples_1.20.1-2+deb12u2_amd64.deb b6c4c98b658309fc5b4fd6ebea2f269ff86caa12 19708 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_amd64.deb b5586369aa83122f81855c96a278509ccc15e237 18996 krb5-k5tls_1.20.1-2+deb12u2_amd64.deb d7bf48f6018468fdbaf6e4bc69b5f7c91878d97a 456232 krb5-kdc-dbgsym_1.20.1-2+deb12u2_amd64.deb 481ab527cc6461ec8fc9d38551e50e6970ea7ca4 192884 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_amd64.deb 5d589416f846aaf6543f7c26fd998783c479b158 87580 krb5-kdc-ldap_1.20.1-2+deb12u2_amd64.deb f7bafd6a05abd680cf3c27fbe61f3e8836f2ae91 180604 krb5-kdc_1.20.1-2+deb12u2_amd64.deb a0c3e03c038f9e4b24eb28b9a3cd15b5929223e4 43476 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_amd64.deb 30d612d375bdd935d2e34cf3ebb4f839320605d0 31264 krb5-kpropd_1.20.1-2+deb12u2_amd64.deb 63257c8db98b2f88a4b4d26e0b2f1447d2d6ac46 125024 krb5-multidev_1.20.1-2+deb12u2_amd64.deb df67eef7748525dc6dd4572c566738c5a26f5d77 29260 krb5-otp-dbgsym_1.20.1-2+deb12u2_amd64.deb 33f27b96000fb5e2a5c0b75bb91fb0ffa41407db 21524 krb5-otp_1.20.1-2+deb12u2_amd64.deb 5c738e2d484d095a7c1a2b6f3fbc63012f0a52dc 156492 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_amd64.deb 7578164894ac09a961932bb7e79e897e81d8a439 57148 krb5-pkinit_1.20.1-2+deb12u2_amd64.deb 13cf88d02d0760c37729b6e60724fb79a7da0962 201712 krb5-user-dbgsym_1.20.1-2+deb12u2_amd64.deb 95f96440390f7436c371b631781b2ee38f143058 118804 krb5-user_1.20.1-2+deb12u2_amd64.deb 3d7f98e3e2642ddd1b1bb6c68ce087b54af06a6c 15850 krb5_1.20.1-2+deb12u2_amd64-buildd.buildinfo 8c2486d487184e4eb995f51de87542d805eaf035 134544 libgssapi-krb5-2_1.20.1-2+deb12u2_amd64.deb f2114d3136b27eb9e7283f0f725d5d59eb78243b 58236 libgssrpc4_1.20.1-2+deb12u2_amd64.deb d162d28fa9b42d9022ee4f764a2e9ae8c4a10ee4 78728 libk5crypto3_1.20.1-2+deb12u2_amd64.deb c9df4b12c432416436e7847bd3d0de07f8f48a7d 41112 libkadm5clnt-mit12_1.20.1-2+deb12u2_amd64.deb 12e39c1522f4ce481f809afa666c8ba5d6b23a5b 52856 libkadm5srv-mit12_1.20.1-2+deb12u2_amd64.deb c5108a1be5ce062ce7583d7a90ec61ff18fdc05e 40636 libkdb5-10_1.20.1-2+deb12u2_amd64.deb e78e8e3fa167288c8d1255d44f34ac69dc3a087f 15296 libkrad-dev_1.20.1-2+deb12u2_amd64.deb ae33ca11cd718ffbc3a918953b73f098184a5511 24236 libkrad0_1.20.1-2+deb12u2_amd64.deb 7a67188f7d2b4f4fe5df3dc70da9cb866aed02f5 331864 libkrb5-3_1.20.1-2+deb12u2_amd64.deb 53e9f52fb6ac26d87cc25a7427200cf2b59b5989 2181204 libkrb5-dbg_1.20.1-2+deb12u2_amd64.deb 8d451d6ea527108ca549ad695a5df5ab9b71d582 14828 libkrb5-dev_1.20.1-2+deb12u2_amd64.deb 1bdbf9375fb556599470be1520990bd9b6f8647f 32612 libkrb5support0_1.20.1-2+deb12u2_amd64.deb Checksums-Sha256: 66f2ef5383381d176f1769b016dacd4ed0f9be2c329ea39bb836146af3cadd92 212856 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_amd64.deb 6804e78695a31be7ec9c7ebbfed106b81c31bffd9f43286f2b487d3bcb263e21 93600 krb5-admin-server_1.20.1-2+deb12u2_amd64.deb 7a0abae2baf6b1ff94c78759f8423c93a4daa525cc90f435b5ca57fd5686c371 39492 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_amd64.deb dda60e38579650b1f23757469cc22cd843a8b8eb435572320a71d164531ad5ef 28264 krb5-gss-samples_1.20.1-2+deb12u2_amd64.deb 11e9c2acdb865be055a3c1c61f84ffb122c9680ff7101da386893139f90d7b87 19708 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_amd64.deb 3ac9b57a3c5ff4980184ded42ee86e1d3eda652a4e7f980aa03801e2405986d6 18996 krb5-k5tls_1.20.1-2+deb12u2_amd64.deb 50f6d1aca1aa0a7edc904e0ad84a361b9c15fb2c62a1fe90590555af71d7fefd 456232 krb5-kdc-dbgsym_1.20.1-2+deb12u2_amd64.deb c4784a4cc21c68b9593223a2df46e3a39dd6e533bba2ba84e6d991e8b16d1e0f 192884 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_amd64.deb 0bac539cb0912d5648cdda0fe7d3cfd4bbbd436e462a912f6c58a6e4bc094d85 87580 krb5-kdc-ldap_1.20.1-2+deb12u2_amd64.deb e846660f1110bbd970361a5a0d798fcfbc209ea051afe5399b0287095468e6db 180604 krb5-kdc_1.20.1-2+deb12u2_amd64.deb 82aebbcecbf10ab680f9d5e579ac698c9a3a75a3241935d6a831420637d1f5e2 43476 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_amd64.deb 32a7e597c8f97251c1c96414dbcb6c266308872c4e6f51ad3e4d38f20f02a343 31264 krb5-kpropd_1.20.1-2+deb12u2_amd64.deb 219e2c82b0cb4eeefa69e512591de69f0ea75dc6cc35361d959301a443e839fb 125024 krb5-multidev_1.20.1-2+deb12u2_amd64.deb c45c991fa0a3e6529018fcf00de49fd4f842c6bbfd86913226ff6915ee69c01e 29260 krb5-otp-dbgsym_1.20.1-2+deb12u2_amd64.deb 2e36dea0fa08dea1d7ed47c9423c77ce991117b8a5086a7162d65dae5d448583 21524 krb5-otp_1.20.1-2+deb12u2_amd64.deb 9aadac32926dad77adecb9bdd166248d53e5fe03b67de8e46bf2c5b0ddd9e620 156492 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_amd64.deb b190c1f6c15605a174fbd52994d28367e6c24048efb1b51a0d476921f38d2955 57148 krb5-pkinit_1.20.1-2+deb12u2_amd64.deb 85a48c3ab7c9a37d890eb3920c39a81fad8350e5a7fdd85cf331ec0b5df66240 201712 krb5-user-dbgsym_1.20.1-2+deb12u2_amd64.deb d80e9996e6384af4fba4a5ad7dfdc686d93deba184e2365b1c5cec181c3f1d82 118804 krb5-user_1.20.1-2+deb12u2_amd64.deb 1968cf549857da023e6abb147fe3fbcbae5d5e6275609ad34b6cd2ccf33c2ef5 15850 krb5_1.20.1-2+deb12u2_amd64-buildd.buildinfo 454eb2ecb79e03682b176f04a54b8820ccf8868c074995d96fb6f4736f546cec 134544 libgssapi-krb5-2_1.20.1-2+deb12u2_amd64.deb 074c86f601e50552ff967454b0b20bb4abcbe0d32491bb28c011fb9a7aa609cf 58236 libgssrpc4_1.20.1-2+deb12u2_amd64.deb de8ae0c2bb31c926b24c374c1159e8b8d5f9817421f45dd29f22cd201982ee3d 78728 libk5crypto3_1.20.1-2+deb12u2_amd64.deb 2e56249612a674b7d5fd15f3af75b40c222224b2c8a2bae5df7632d94b66fc41 41112 libkadm5clnt-mit12_1.20.1-2+deb12u2_amd64.deb b519527790e222b40004a371fdecdfb850f78e395e64ba3917e9251602e3b957 52856 libkadm5srv-mit12_1.20.1-2+deb12u2_amd64.deb bba4ec4c31be4663bfd8eb39da5336517448df86e618414c76e3dc14c918daf8 40636 libkdb5-10_1.20.1-2+deb12u2_amd64.deb 7a03259117c9fe8b0b7b49debb44653afe92f73d0085f2512a3409d52eabbcb7 15296 libkrad-dev_1.20.1-2+deb12u2_amd64.deb f4b32cc7270d37ffd2d3b437d33ca932c7a50eadb4436a967e10805907a2c255 24236 libkrad0_1.20.1-2+deb12u2_amd64.deb 9ce3d67db89417e1539f33a62ce85959dc96e3865ecad77606e2af1e6680d6da 331864 libkrb5-3_1.20.1-2+deb12u2_amd64.deb 7ebf3b3cd14f570914754a23ed0070e73b2678a335e7c19dc64c152d4150654d 2181204 libkrb5-dbg_1.20.1-2+deb12u2_amd64.deb 74ae986e64496108da0984077830882928a5414e3f2496e560cd4f2c4359abe8 14828 libkrb5-dev_1.20.1-2+deb12u2_amd64.deb 3bb1a8f9cfdd31f92e0cdd0a040c738a2de0d343afe7f830850e3ab7695e649c 32612 libkrb5support0_1.20.1-2+deb12u2_amd64.deb Files: f7803edaa703bf633e57afcf762ff158 212856 debug optional krb5-admin-server-dbgsym_1.20.1-2+deb12u2_amd64.deb 19593048fe6b06d4786e88a89bd707d3 93600 net optional krb5-admin-server_1.20.1-2+deb12u2_amd64.deb 4de2904b67efaa90fe22fcc1bb367198 39492 debug optional krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_amd64.deb f0cec1ee5546fbb9a635abb85be689b8 28264 net optional krb5-gss-samples_1.20.1-2+deb12u2_amd64.deb d78721eefd74b5a1dd6984ef6f1faccc 19708 debug optional krb5-k5tls-dbgsym_1.20.1-2+deb12u2_amd64.deb 037ce52e43c9d345b70e895abc63d99d 18996 net optional krb5-k5tls_1.20.1-2+deb12u2_amd64.deb fb41f5e1eb328df570c7116d98bac15c 456232 debug optional krb5-kdc-dbgsym_1.20.1-2+deb12u2_amd64.deb 872c0f55654e55123d3867040371a2ff 192884 debug optional krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_amd64.deb 6e47c0e0828066e26995ae539a4d8e97 87580 net optional krb5-kdc-ldap_1.20.1-2+deb12u2_amd64.deb f7b09cdd60a0a91a660ca56bcbe2aac9 180604 net optional krb5-kdc_1.20.1-2+deb12u2_amd64.deb 0eb990a4a2ef01e7873b769acd4b0240 43476 debug optional krb5-kpropd-dbgsym_1.20.1-2+deb12u2_amd64.deb d3ed006e95c3a93139e1ce343d583bd0 31264 net optional krb5-kpropd_1.20.1-2+deb12u2_amd64.deb adcd09bdf59a653074411ff5915a7b32 125024 libdevel optional krb5-multidev_1.20.1-2+deb12u2_amd64.deb 66fee23e27fbb949044ce0cba106d06a 29260 debug optional krb5-otp-dbgsym_1.20.1-2+deb12u2_amd64.deb 6d53767df800a6f36b8e773d578dbfa2 21524 net optional krb5-otp_1.20.1-2+deb12u2_amd64.deb 0bf32831161ed1acfd0c8ae602d76753 156492 debug optional krb5-pkinit-dbgsym_1.20.1-2+deb12u2_amd64.deb 3ca862235f95c9beae1655e7fd2fe5a0 57148 net optional krb5-pkinit_1.20.1-2+deb12u2_amd64.deb 7a84130bd482476eb189062bdca7da7a 201712 debug optional krb5-user-dbgsym_1.20.1-2+deb12u2_amd64.deb 12213b69a46c3dec91d86359e46aaf86 118804 net optional krb5-user_1.20.1-2+deb12u2_amd64.deb bc69f6f4c0bf13d813893953ca8f3951 15850 net optional krb5_1.20.1-2+deb12u2_amd64-buildd.buildinfo 3c089282d742e5b32b47685198a98e01 134544 libs optional libgssapi-krb5-2_1.20.1-2+deb12u2_amd64.deb db8ca0f2dfcd47a4a1a083a7d97b0211 58236 libs optional libgssrpc4_1.20.1-2+deb12u2_amd64.deb 53580e71098a53d7081fa52f105355b4 78728 libs optional libk5crypto3_1.20.1-2+deb12u2_amd64.deb 4353b3efe54ac123b460d25bec36451b 41112 libs optional libkadm5clnt-mit12_1.20.1-2+deb12u2_amd64.deb 4eaeabd9b7c8029d3882fe724c8faf6b 52856 libs optional libkadm5srv-mit12_1.20.1-2+deb12u2_amd64.deb a5eacbcfa45e96a54ff21250221dbf56 40636 libs optional libkdb5-10_1.20.1-2+deb12u2_amd64.deb da66c89581fea226c1e8ac70249c75fb 15296 libdevel optional libkrad-dev_1.20.1-2+deb12u2_amd64.deb 30c2957eb5d292c10332feae9dc6d34a 24236 libs optional libkrad0_1.20.1-2+deb12u2_amd64.deb 103f90d3a6bf6c8c41ad925c7a9a5e2f 331864 libs optional libkrb5-3_1.20.1-2+deb12u2_amd64.deb dc29747b1c7378ecf1dc2bdc5c85f885 2181204 debug optional libkrb5-dbg_1.20.1-2+deb12u2_amd64.deb f90b26375aa4c8074e07a6afeb239e68 14828 libdevel optional libkrb5-dev_1.20.1-2+deb12u2_amd64.deb 032fb776820e988121a65f5ece7350aa 32612 libs optional libkrb5support0_1.20.1-2+deb12u2_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEErEDrIdpJkzFMm6K+PyQET5WCY90FAmaDBpYACgkQPyQET5WC Y90IyxAAiNsuATwSl5RkYj+JWWgG6dsIn+iQxEBqfzKBZSBGfox9qU9sc64+lfIO Kr7df3lbsg01RrNd+sOS1YQxDNrbB8J20Ow4oCw4YA7zVBXCbr+ONd1QxFPaF/EM q4FM5NGVpIf8BXa/AbTsq6iB/Kwdrdb75Ufw79ZtRJ7/DRjgOY8REwpp/MCSP2EK FbFLuHjcEDqACDfrEFygH4MaRYZbTTo5odGCS4UdAt2R+SzIhKRrj7hRFg8RN/CK nH4k8vpNx+hzecAZ7KVXka/SGbvvdNpXOTisSb5YScw77wB8y/iXkAt21A0/NQir +DbvYU43aUQ9hjYQLhzNBaaf/YJ65R3oW/coZ7PelaQYF/VxEko/qIgpLSGG4Gda VtXaPJg58m+PSIRlvCSfJDeo1fs2+HFqRA28p6VZPkLG667ZQ95x7dQZZW/eng7X 0260666Q7MAT3T3IKWDQabnxDzem9wPD6Jfbloyf6rCMFE+P6oY3p80V3q0XtgIf 8lT4GwKOv06Z9viUGXAFrXUJ4i+YZS7lVCcSRaS8AHAEWAsqy5M6HbRI6qPDba4K eGCGMYZ5lNlcbBfrolFbX4YLMzTAaCRZ22PMRVCGdXOmBWrpP42JZalClufl6OSB 4PbrwImHcGKOIHEGPSryMz1Pj5A79D70nd7GYSA6tjDTocIM+ps= =tamg -----END PGP SIGNATURE-----