-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 01 Jul 2024 11:31:35 -0600 Source: krb5 Binary: krb5-admin-server krb5-admin-server-dbgsym krb5-gss-samples krb5-gss-samples-dbgsym krb5-k5tls krb5-k5tls-dbgsym krb5-kdc krb5-kdc-dbgsym krb5-kdc-ldap krb5-kdc-ldap-dbgsym krb5-kpropd krb5-kpropd-dbgsym krb5-multidev krb5-otp krb5-otp-dbgsym krb5-pkinit krb5-pkinit-dbgsym krb5-user krb5-user-dbgsym libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12 libkadm5srv-mit12 libkdb5-10 libkrad-dev libkrad0 libkrb5-3 libkrb5-dbg libkrb5-dev libkrb5support0 Architecture: i386 Version: 1.20.1-2+deb12u2 Distribution: bookworm-security Urgency: high Maintainer: i386 Build Daemon (x86-grnet-01) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-k5tls - TLS plugin for MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-kpropd - MIT Kerberos key server (Slave KDC Support) krb5-multidev - development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit12 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit12 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-10 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - debugging files for MIT Kerberos libkrb5-dev - headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Changes: krb5 (1.20.1-2+deb12u2) bookworm-security; urgency=high . * CVE-2024-37370: an unauthenticated attacker can modify the extra count in an RFC 4121 GSS token, causing the token to appear truncated. * CVE-2024-37371: an attacker can cause invalid memory reads by sending an invalid GSS token. Checksums-Sha1: 87feda89336f5dec674ff40a599c71cc065e9cb2 187736 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_i386.deb 046ebfcd994c767fb95aed8b2863e40ffc819d9a 96560 krb5-admin-server_1.20.1-2+deb12u2_i386.deb fd1f715ad7fe1e832f1c80dfb7e2b55f1567179b 36424 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_i386.deb 3858b8b07aa6f6791c5269109f5cb75caef8a83a 28608 krb5-gss-samples_1.20.1-2+deb12u2_i386.deb b3b9801d9d1ac5d8e7aa14cd47b21842396c3d8b 18752 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_i386.deb 57980af427140ac192a1387fe358f5beb05d91cc 19488 krb5-k5tls_1.20.1-2+deb12u2_i386.deb 6cd4d5c1f12afb8d8fed682b46089cbc49b285b9 403276 krb5-kdc-dbgsym_1.20.1-2+deb12u2_i386.deb 98b9fdd8ae71fc386fad2761ca726aab290993b2 171664 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_i386.deb 96108aacfd73692e3b80ab9f0683007e988ed51f 92812 krb5-kdc-ldap_1.20.1-2+deb12u2_i386.deb 0abae7f7cf66cf932d095925456a2034539a70ff 191188 krb5-kdc_1.20.1-2+deb12u2_i386.deb b07aadd80f53327a2920598df14687fda8a09bf5 41668 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_i386.deb 4c45bef691b9553733ed0f9b6db2f74a527dab04 31892 krb5-kpropd_1.20.1-2+deb12u2_i386.deb f97ba70e9ce244996d998bba73d70e12a5ac3902 125024 krb5-multidev_1.20.1-2+deb12u2_i386.deb d58283bf3cdcaece9e4d553bca2e1c1a116b56aa 27368 krb5-otp-dbgsym_1.20.1-2+deb12u2_i386.deb 47df9c123709d77a9637d6c410cd6b6ce9bbfe8b 22352 krb5-otp_1.20.1-2+deb12u2_i386.deb 83b6a438e9a113b16ada729957858a98f89a53f2 136344 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_i386.deb 3c11c42309b63024d5ded37211f1455fcd3bdba6 62140 krb5-pkinit_1.20.1-2+deb12u2_i386.deb 7f58916292782697e3faa9a35d719f034e3bea09 178752 krb5-user-dbgsym_1.20.1-2+deb12u2_i386.deb 629b8685b40f557a759c0418e5d32e83756caa73 120780 krb5-user_1.20.1-2+deb12u2_i386.deb 58b800240a5c4b284f2b4778eb6ce4d21ba8d654 15719 krb5_1.20.1-2+deb12u2_i386-buildd.buildinfo 1d02fffcb02878a75d8c12e62c3c29f34ecb0bbf 144252 libgssapi-krb5-2_1.20.1-2+deb12u2_i386.deb 639fe4b879c3e390bc8731e262607a198c319346 62048 libgssrpc4_1.20.1-2+deb12u2_i386.deb 3424022eabadebeb540f325b96f2e4b7eddd07fe 82384 libk5crypto3_1.20.1-2+deb12u2_i386.deb 24c820325b84cf7dacc41911d05b506d762f630f 42544 libkadm5clnt-mit12_1.20.1-2+deb12u2_i386.deb 5526c4b06d38dead50007635e016de3535b6ec24 56136 libkadm5srv-mit12_1.20.1-2+deb12u2_i386.deb c0af63c5c2e69638f17f5c9e7ae58cb83c61f3ce 43836 libkdb5-10_1.20.1-2+deb12u2_i386.deb f9aa18d300166102ce9befbd13cf9fb9636e9e6b 15296 libkrad-dev_1.20.1-2+deb12u2_i386.deb c77c204b412553a4c5f5375510742dfe0a6129e8 25064 libkrad0_1.20.1-2+deb12u2_i386.deb ff05c317178feacc3d95e86f24a1d9e62eae3240 359976 libkrb5-3_1.20.1-2+deb12u2_i386.deb 5d89682b23036d5e496641a7d2c74e88c2f5960b 1913204 libkrb5-dbg_1.20.1-2+deb12u2_i386.deb df71274fe4e0d8b51768baa9fc386659f57012c8 14816 libkrb5-dev_1.20.1-2+deb12u2_i386.deb ea5419983694b25909ed2645e4e9519108138928 35324 libkrb5support0_1.20.1-2+deb12u2_i386.deb Checksums-Sha256: 0256a6f610f25b8a815ff5ab0f57fc008244dd66cdd0f79a8c73386ae9a93a82 187736 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_i386.deb baad12d8a7ce7271441b69f0d4ebaecb57ada4d632d859c7d2272ba062d2a9ce 96560 krb5-admin-server_1.20.1-2+deb12u2_i386.deb fc9f5b00d25f8b5a16ca25c73c03c795868ccbe29b61a77c15434c5592acb379 36424 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_i386.deb df48e9bf7cba60682e69777d5715a96d3bd4521ec1043d25e44f380c857aec2d 28608 krb5-gss-samples_1.20.1-2+deb12u2_i386.deb 4da94ed49a29883470019882f8091032c42509a7297fc16fe2ce2a2b55a24d15 18752 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_i386.deb ae200599c0c5409a8801ce9fab63a66d1571a6845eff416c506235e3968833f0 19488 krb5-k5tls_1.20.1-2+deb12u2_i386.deb b722c5f9714d6a3ad5d3b96de4d0ab91fb4eca70f16de05140db4c76cbb98344 403276 krb5-kdc-dbgsym_1.20.1-2+deb12u2_i386.deb c99a0588cf5f6281d3e335a9ae78d7fe2ca385c8896e4ceb0b01ac46b35ef6b1 171664 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_i386.deb fce79c0b4415ddd5592eb97883f14482153ece6c065e9f096248de1bed49cfc0 92812 krb5-kdc-ldap_1.20.1-2+deb12u2_i386.deb 45d3cd75dc3c53fb28f8d7a63ef056ba6efbb93e42c9156f94f861368b5cc82b 191188 krb5-kdc_1.20.1-2+deb12u2_i386.deb 795ca0bc9f0c31cac7f76b3b1845b0e2f8d5b7cc8996dcbadec0930109a93786 41668 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_i386.deb 0f94d64358fcd2f116a3393b915521dcde84326c52ed01c9e8a81b11d241febd 31892 krb5-kpropd_1.20.1-2+deb12u2_i386.deb 50643b1d6ecf98a95153aa96edadc2f57b900fb18aad3db3ec76d987f7b6e028 125024 krb5-multidev_1.20.1-2+deb12u2_i386.deb d20a840fb59b930bfd855047faaa3da8d37c8e7b5b880610b205a3668c39d57b 27368 krb5-otp-dbgsym_1.20.1-2+deb12u2_i386.deb c24b6ee1dd4a824fe1acfea2836058f8c8d52f1ee925aa467f79e36741b19bb2 22352 krb5-otp_1.20.1-2+deb12u2_i386.deb 30f0743ba630fb53d39887f73b3e778e18320316ac1ff9c9a6ed63a660f9dcdb 136344 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_i386.deb a743fb0f8e28a2c581b103a6767a96fdf2866cacc589352d206a1cdb1ef914f9 62140 krb5-pkinit_1.20.1-2+deb12u2_i386.deb 7656f564a9a812a14140b4df81034396e1aacdb492ca5966783a8680447d065c 178752 krb5-user-dbgsym_1.20.1-2+deb12u2_i386.deb b45f80d10adb9368e2f675712265f9d4d4f56c07bc9592f392b755516df3a6ce 120780 krb5-user_1.20.1-2+deb12u2_i386.deb a7a91207084450ed472634d371eb241ef72b5e8cc59c302761db09bba5c9074b 15719 krb5_1.20.1-2+deb12u2_i386-buildd.buildinfo 9e243ac095024d9ace3737cf1b275eca2c0e3724166c6390776c5f1abf044858 144252 libgssapi-krb5-2_1.20.1-2+deb12u2_i386.deb ca8e7c4c87ef6cbc62c924f6183ad950c2323adeb1b221c0b5819851fe209fa0 62048 libgssrpc4_1.20.1-2+deb12u2_i386.deb a9d7fabee70c9e6bf9c83b10444e40a93e34f1ba26e9e6bae5ce1b8c2b8573a3 82384 libk5crypto3_1.20.1-2+deb12u2_i386.deb e820862693f1e86443edbcff6d1826c1b195cf7825cc7661f5a62b82f3801b16 42544 libkadm5clnt-mit12_1.20.1-2+deb12u2_i386.deb e9ffa20db2069cdddba421ad28c93061dab372565b11462fe6935c246ee34a00 56136 libkadm5srv-mit12_1.20.1-2+deb12u2_i386.deb e8926b41485d5d9e63c5b933b9cefd60fa995d7f4eeafc9be449b965ecfdd6d2 43836 libkdb5-10_1.20.1-2+deb12u2_i386.deb 455f9f6f1b28ef991f76d854e29ccdcea514c17298aed3daab62e26dca5bff57 15296 libkrad-dev_1.20.1-2+deb12u2_i386.deb c75b7cb1d29e919c9e759eab68d234950ca47549c2681d0ad27382a837619779 25064 libkrad0_1.20.1-2+deb12u2_i386.deb 8df6321b4b5e1c5912c2eeb584c4d071fd23e9fe5d17777a8380634a96ad113f 359976 libkrb5-3_1.20.1-2+deb12u2_i386.deb a90f200faa58480d83984416643390d87d8519facfd09c7c282fa22971a1e1e9 1913204 libkrb5-dbg_1.20.1-2+deb12u2_i386.deb 29f587a50fccfb05d3700d7c3fa34a09cb946ee443f13cb9484ea982c163b20a 14816 libkrb5-dev_1.20.1-2+deb12u2_i386.deb d99354b45eed3d82cf0d6ba8d37f3e777ca19f64d125cd19d898df1ff95267a1 35324 libkrb5support0_1.20.1-2+deb12u2_i386.deb Files: 295d8fb9ee37a20a012ab722c05b467f 187736 debug optional krb5-admin-server-dbgsym_1.20.1-2+deb12u2_i386.deb 49515987721feb4c32df1597d5422a91 96560 net optional krb5-admin-server_1.20.1-2+deb12u2_i386.deb f520dbe7adc45397e821ead57f068a31 36424 debug optional krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_i386.deb c8850123b9c9423836ae8b5574606c03 28608 net optional krb5-gss-samples_1.20.1-2+deb12u2_i386.deb 411a665959840495f88282cc98f0d5f7 18752 debug optional krb5-k5tls-dbgsym_1.20.1-2+deb12u2_i386.deb 3d27fb03f5a8f5986aba98b7d14c48b4 19488 net optional krb5-k5tls_1.20.1-2+deb12u2_i386.deb d9e4d5e36c82636af6b2537921e93eff 403276 debug optional krb5-kdc-dbgsym_1.20.1-2+deb12u2_i386.deb fbd51879565b3b6e5d4b57c76e34766a 171664 debug optional krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_i386.deb d12e15c17b6e6b00d5c4de81549285be 92812 net optional krb5-kdc-ldap_1.20.1-2+deb12u2_i386.deb 025888109ed07baf2f54ee4abfb2ee1b 191188 net optional krb5-kdc_1.20.1-2+deb12u2_i386.deb 1422406ecd247b4421ee4c5689ad2d59 41668 debug optional krb5-kpropd-dbgsym_1.20.1-2+deb12u2_i386.deb 1d77833dde6f4b5d9f203f60cc53f4b9 31892 net optional krb5-kpropd_1.20.1-2+deb12u2_i386.deb 920f66366149c14807b7bdbd8d16efe5 125024 libdevel optional krb5-multidev_1.20.1-2+deb12u2_i386.deb 8ce24a43a58e5f939ef03549fe62dea2 27368 debug optional krb5-otp-dbgsym_1.20.1-2+deb12u2_i386.deb c1776dbb13731c672849d1a56d030c70 22352 net optional krb5-otp_1.20.1-2+deb12u2_i386.deb ed85c31582b27238bd2a999b3d7fbd08 136344 debug optional krb5-pkinit-dbgsym_1.20.1-2+deb12u2_i386.deb 16886d53e1f184807197f832a8228ddd 62140 net optional krb5-pkinit_1.20.1-2+deb12u2_i386.deb c3cea1da7367a41cb97cfb27c26aa6ac 178752 debug optional krb5-user-dbgsym_1.20.1-2+deb12u2_i386.deb 9f2d2458c788beff5af087876867a5b5 120780 net optional krb5-user_1.20.1-2+deb12u2_i386.deb a52edabcf20698d2d9a4f390bcdc743f 15719 net optional krb5_1.20.1-2+deb12u2_i386-buildd.buildinfo f44b64d17191445ec884dafb2d856615 144252 libs optional libgssapi-krb5-2_1.20.1-2+deb12u2_i386.deb 65f115c38093eb19a375059aa7c5557d 62048 libs optional libgssrpc4_1.20.1-2+deb12u2_i386.deb e92047b8877ad859cd3d97be1d81df48 82384 libs optional libk5crypto3_1.20.1-2+deb12u2_i386.deb ac8f5350c9df2b61786dcf9d2e135930 42544 libs optional libkadm5clnt-mit12_1.20.1-2+deb12u2_i386.deb 689a049b2eabf9d6b353a70dcad26478 56136 libs optional libkadm5srv-mit12_1.20.1-2+deb12u2_i386.deb 811a9f9719a4befb551b6e7d8b4ead9f 43836 libs optional libkdb5-10_1.20.1-2+deb12u2_i386.deb b63275be7eeed6a7fb999070ceef01a5 15296 libdevel optional libkrad-dev_1.20.1-2+deb12u2_i386.deb cf9dabb85fb0b7c535ddb9d23ef0e677 25064 libs optional libkrad0_1.20.1-2+deb12u2_i386.deb 133861a1824a8335675f071b8a1c11f4 359976 libs optional libkrb5-3_1.20.1-2+deb12u2_i386.deb e32440cbfe08a06f799ec708f2b4633d 1913204 debug optional libkrb5-dbg_1.20.1-2+deb12u2_i386.deb bbb1aad5bbfd9686ee9417067bae54d5 14816 libdevel optional libkrb5-dev_1.20.1-2+deb12u2_i386.deb 5fe60f23808664bba20c0dcb2dbc64e3 35324 libs optional libkrb5support0_1.20.1-2+deb12u2_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEyTfXx8sBpQ0Lh3cUU9a0/LcaTpMFAmaDBnEACgkQU9a0/Lca TpOgjg/+M2kcMPhrXT/Nk2XnUsYQ2P5CWEPwlljB9fDL6E02LMvdbIBMl0HDTL1o nht6iLu8RV9SHXX0+nP6r9dV/5qnsT0Bg2mZv+gjaC5vx/vcPm0+Q+bOg9VMvq/w ISyeNK0EiF2myqIKbhzrURaY3qMIvzDh5KSf45OV/TlycjDuDrtz6Te0EJPO+cTL ceyzf8EpR59n7CCV/NRyLsfE0RelST2b9hh8BrMT1B6B4n/GtHQNGlt+72K9YCbB 5Uhb/nFGSm3JR+omPX+DgCM78JUhmryxcvoplWrJdZXksxhefz8FAldgJ9bzhHXP 5wdNVkBkEcPfTTvvuqiSmOmfxoQE0Cnze38drypKwz7ebbM7sJzhFprKokbxzX7Z UMcSpgd4JRWdwtTXhsev1XHXMwR8TsJJYZbD71c9z2mHcuTcKQPSJIH7n9+cG6Sg yDc9x1K0O+3rgWltVXkK3WgMTZ9F/0WhKOGOaPsPIkXQUPNnm9PlpA/HL7I+jqnb l7Op9ZCnBW3JZ04RaUpJpGrcKPtJ/14Q4ToaYz8zpCEmHaah6sOODXQK/0DSBpyD HcGC7IpMj5tU9+mVDZH+aFS/QHMjfqyY5fZPkXlCDdQPSuOeaJc9TZawiqNuAbeR NiORyK0Kag8NCswSku6pHHfNnJ5l95E2sGgtLEEp1VmJ4d2sPHM= =I3Jx -----END PGP SIGNATURE-----