-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 01 Jul 2024 11:31:35 -0600 Source: krb5 Binary: krb5-admin-server krb5-admin-server-dbgsym krb5-gss-samples krb5-gss-samples-dbgsym krb5-k5tls krb5-k5tls-dbgsym krb5-kdc krb5-kdc-dbgsym krb5-kdc-ldap krb5-kdc-ldap-dbgsym krb5-kpropd krb5-kpropd-dbgsym krb5-multidev krb5-otp krb5-otp-dbgsym krb5-pkinit krb5-pkinit-dbgsym krb5-user krb5-user-dbgsym libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12 libkadm5srv-mit12 libkdb5-10 libkrad-dev libkrad0 libkrb5-3 libkrb5-dbg libkrb5-dev libkrb5support0 Architecture: s390x Version: 1.20.1-2+deb12u2 Distribution: bookworm-security Urgency: high Maintainer: s390x Build Daemon (zani) Changed-By: Sam Hartman Description: krb5-admin-server - MIT Kerberos master server (kadmind) krb5-gss-samples - MIT Kerberos GSS Sample applications krb5-k5tls - TLS plugin for MIT Kerberos krb5-kdc - MIT Kerberos key server (KDC) krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin krb5-kpropd - MIT Kerberos key server (Slave KDC Support) krb5-multidev - development files for MIT Kerberos without Heimdal conflict krb5-otp - OTP plugin for MIT Kerberos krb5-pkinit - PKINIT plugin for MIT Kerberos krb5-user - basic programs to authenticate using MIT Kerberos libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library libkadm5clnt-mit12 - MIT Kerberos runtime libraries - Administration Clients libkadm5srv-mit12 - MIT Kerberos runtime libraries - KDC and Admin Server libkdb5-10 - MIT Kerberos runtime libraries - Kerberos database libkrad-dev - MIT Kerberos RADIUS Library Development libkrad0 - MIT Kerberos runtime libraries - RADIUS library libkrb5-3 - MIT Kerberos runtime libraries libkrb5-dbg - debugging files for MIT Kerberos libkrb5-dev - headers and development libraries for MIT Kerberos libkrb5support0 - MIT Kerberos runtime libraries - Support library Changes: krb5 (1.20.1-2+deb12u2) bookworm-security; urgency=high . * CVE-2024-37370: an unauthenticated attacker can modify the extra count in an RFC 4121 GSS token, causing the token to appear truncated. * CVE-2024-37371: an attacker can cause invalid memory reads by sending an invalid GSS token. Checksums-Sha1: 906714a69685bfcee2e5ab0f573bdb988bac45e6 204232 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_s390x.deb f6ff7b6613cb1f01c72059b3a2658c0a7dd863b3 87728 krb5-admin-server_1.20.1-2+deb12u2_s390x.deb ef1297d72af044a3cb438b5686cffbe57fa4a948 36252 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_s390x.deb b39a09105040474298fbcbbc515735d30a24c9fb 27144 krb5-gss-samples_1.20.1-2+deb12u2_s390x.deb b9b6291ca8e91e342c54ab54852e50d19bd4f2d7 19432 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_s390x.deb 7f49aba024b0c806196d04c1456405e0474f4761 18464 krb5-k5tls_1.20.1-2+deb12u2_s390x.deb d8fe2d64b1428e85507e9626f58f7dd589642afb 443280 krb5-kdc-dbgsym_1.20.1-2+deb12u2_s390x.deb be6a31434cf68c7653b7e7cd1eed2fbcbe52bf31 184456 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_s390x.deb 9fde23b53471d017858b89f7ea02847c7494fae0 82152 krb5-kdc-ldap_1.20.1-2+deb12u2_s390x.deb fad5d499963878e108560fa4b95b3da834153764 169904 krb5-kdc_1.20.1-2+deb12u2_s390x.deb 146dc67103f281fb9122fa84e4b33e79b6d5263e 42444 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_s390x.deb b3ed98cbf27788e502daa3fb9c032caedf55caf6 30368 krb5-kpropd_1.20.1-2+deb12u2_s390x.deb 0e0a7d5d87e75d7766cdd39eef81bec64c52f26b 125024 krb5-multidev_1.20.1-2+deb12u2_s390x.deb 002f521e3655eeb53b52c59503426b90e5b8a030 28808 krb5-otp-dbgsym_1.20.1-2+deb12u2_s390x.deb 32cf19ee624a9657aea0b483876a0351c88deb84 20956 krb5-otp_1.20.1-2+deb12u2_s390x.deb 045c0dab7fdf38949a47aab1898436a54076e1bb 154276 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_s390x.deb 2ed3193ab4fffcd239b381c8279c262cd43d55ff 53784 krb5-pkinit_1.20.1-2+deb12u2_s390x.deb 05e1dcab3cb474e5d37456b17d22791772b7a4b9 192996 krb5-user-dbgsym_1.20.1-2+deb12u2_s390x.deb dc0493b1ca4459bddaa785a439421b7db42270b3 113612 krb5-user_1.20.1-2+deb12u2_s390x.deb 0b506c294f6f73b5aa2feec78ffaf797767b6bf5 15761 krb5_1.20.1-2+deb12u2_s390x-buildd.buildinfo 0bee055807dc9bdb95681bdb14ab783c9b13cd44 121732 libgssapi-krb5-2_1.20.1-2+deb12u2_s390x.deb fe80cba8537758a9c33bdd122f8cb2219d462af1 54420 libgssrpc4_1.20.1-2+deb12u2_s390x.deb 38a23e74493e456c6b08a0104ae69045ff4da25f 76352 libk5crypto3_1.20.1-2+deb12u2_s390x.deb 5aee32e320eeaf64638c4938a77ae5b35dab151b 38296 libkadm5clnt-mit12_1.20.1-2+deb12u2_s390x.deb 178396d47e96cae55c1f2bcae0960eee9dd45357 50012 libkadm5srv-mit12_1.20.1-2+deb12u2_s390x.deb 3c6066a4d186f3431669d52c45bcfd4d5766288a 39004 libkdb5-10_1.20.1-2+deb12u2_s390x.deb c774e1d0d8ea98c99bc6151a016f7ec48ded2398 15300 libkrad-dev_1.20.1-2+deb12u2_s390x.deb a32637639fca813ae29bbd7eb37c4698a88ef15c 23536 libkrad0_1.20.1-2+deb12u2_s390x.deb 877877d97b5662a037782dc4b816473fd15ff785 310112 libkrb5-3_1.20.1-2+deb12u2_s390x.deb 7bb7bc8f674e1a2ea0951493c4772b045df4904b 2125668 libkrb5-dbg_1.20.1-2+deb12u2_s390x.deb f35bb2d9db46e8b7783e84f87d5d30b3cd537909 14832 libkrb5-dev_1.20.1-2+deb12u2_s390x.deb 587295e79ab5ce2a02499523355f1f4295100a63 31636 libkrb5support0_1.20.1-2+deb12u2_s390x.deb Checksums-Sha256: 93f3bcc89a3b4648542f43cf59e0bdff6f0aeec2288147298ccf8d2f8c9797db 204232 krb5-admin-server-dbgsym_1.20.1-2+deb12u2_s390x.deb 1bf19e9336375d9289646e727d49097a24fb3d0762c98d280bb8e90c37aeb2c7 87728 krb5-admin-server_1.20.1-2+deb12u2_s390x.deb 9f378a517b0f7840ee058650590f99350b35d73ba36e278b278e5acaa0d3b509 36252 krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_s390x.deb 130f1aa4bb017bfcc68bfeb3343659592a19f88e6fe02a6dadc3b65c80472b0a 27144 krb5-gss-samples_1.20.1-2+deb12u2_s390x.deb a0b21aa71644971885407a8dce161980a3ac942fa3e765c7bfb84732d6f83f41 19432 krb5-k5tls-dbgsym_1.20.1-2+deb12u2_s390x.deb 19b6f22fb2b7254b96ffaee9909c064ac5932f96156fafb68288f582f2caea08 18464 krb5-k5tls_1.20.1-2+deb12u2_s390x.deb ab67c6b5f5d303fb858bb0d6ebfcf77a10f637d647eefcd7e71627b8fbc20c89 443280 krb5-kdc-dbgsym_1.20.1-2+deb12u2_s390x.deb d730cfb47c66ee0a52473e91d81c3dee19ebe4aa5678cdaa6bc107689c17f9aa 184456 krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_s390x.deb e50716b180866a1b1fa3859933428e7236a0903d60116087ef7fb2f1fef6f37d 82152 krb5-kdc-ldap_1.20.1-2+deb12u2_s390x.deb f0a460f1137434214c524565de20c29e605fc7635a3dcf17955991c21d5de018 169904 krb5-kdc_1.20.1-2+deb12u2_s390x.deb 8879af6e11e704c9c7d5d5bc18722de665d48a1cb1af1882db0f769cd96ca3fd 42444 krb5-kpropd-dbgsym_1.20.1-2+deb12u2_s390x.deb db64ed2920f9c43e65343387ade6633ddd9f707788e6c03261a56eb6188e3062 30368 krb5-kpropd_1.20.1-2+deb12u2_s390x.deb abbfbe01f68482f309f14e5f664c7f1d41435b335882fad8dc365a37baf1cbd1 125024 krb5-multidev_1.20.1-2+deb12u2_s390x.deb 66e8aa1e6663753b48a95a5f2134155cdb7ad8b13da295b297a9228618020457 28808 krb5-otp-dbgsym_1.20.1-2+deb12u2_s390x.deb 751e7694e32b11648d835c2adebd28379943750ed03b708eaed2dec9eb306200 20956 krb5-otp_1.20.1-2+deb12u2_s390x.deb b4d83c224f5df2eea87da92549798f63e95abddc13a318a5743c97447f09880b 154276 krb5-pkinit-dbgsym_1.20.1-2+deb12u2_s390x.deb b2db72bb9111297ffe3ffa6209dc3b1541f806d02675319328ab3c9aae10627e 53784 krb5-pkinit_1.20.1-2+deb12u2_s390x.deb cc9a43e7eed275763831c31f4fa5d01acb6adf8cded6b99401bf5d73de5aeade 192996 krb5-user-dbgsym_1.20.1-2+deb12u2_s390x.deb c619dc662250c2e1051ffbcf5c6adf22c2ae363c1b0816a0e7dcee6398a2d2b7 113612 krb5-user_1.20.1-2+deb12u2_s390x.deb 74dba878dc11fbe1f1ee5cd9ee262f78473b99a8ea6f3a0d2cac30d569f6a91b 15761 krb5_1.20.1-2+deb12u2_s390x-buildd.buildinfo 334e60df8b2f6849bb050ec358e0789296ebea48d2096090ffa196a9928207e4 121732 libgssapi-krb5-2_1.20.1-2+deb12u2_s390x.deb 34ba3e8b95fbd0e87b25dffadfbf22c7afdcbe91ff42befc22084e2a98deb0ce 54420 libgssrpc4_1.20.1-2+deb12u2_s390x.deb f098d74b0c4f54091ed086685d21f251d9d526f30a8997acc3411642a1170b8c 76352 libk5crypto3_1.20.1-2+deb12u2_s390x.deb 5a122b24aeea1fae04e32824728e134e930ed0f5c0e30f483946cad2108674e3 38296 libkadm5clnt-mit12_1.20.1-2+deb12u2_s390x.deb e3ebba3b84c174356adba5cccb302bef88ff677d0ad20ee54924932a8467d2a4 50012 libkadm5srv-mit12_1.20.1-2+deb12u2_s390x.deb 563a0ab367fdb09928a6c466cc6b1d9825dc71c5f402dfda38b351f2eeaf0129 39004 libkdb5-10_1.20.1-2+deb12u2_s390x.deb e6240fe5aeddbd3d85b3d109d2439acfcb720271d336d456cc054146dfb65b0e 15300 libkrad-dev_1.20.1-2+deb12u2_s390x.deb d0e9eba2a2f9a3a572a72a7fc4beaae2b832790d42f4404d982c21b2a2b0205f 23536 libkrad0_1.20.1-2+deb12u2_s390x.deb 55eacf7d1a4954a99e4c832f1a866f975d20a030ace6cdff8d49fd717f579215 310112 libkrb5-3_1.20.1-2+deb12u2_s390x.deb dc34b526e439df1fb396f9fda886d7e4cbe6ed13e00490ec510c61d1c7bff6be 2125668 libkrb5-dbg_1.20.1-2+deb12u2_s390x.deb 9380773f402cbf933e8cd1a17a936fc75bed6e9ae1297431f17fdcf7f7f33713 14832 libkrb5-dev_1.20.1-2+deb12u2_s390x.deb 4910a38470f50820a41234542c1f7259ea168c93c6ba4a33cd04681722647ae5 31636 libkrb5support0_1.20.1-2+deb12u2_s390x.deb Files: d58bd01204871c55ccc2f2bad2af9ebe 204232 debug optional krb5-admin-server-dbgsym_1.20.1-2+deb12u2_s390x.deb 60b63df392ffb6d9e07f8a5ec1c76f19 87728 net optional krb5-admin-server_1.20.1-2+deb12u2_s390x.deb 1572abb447f79b3a836b8b74fb205127 36252 debug optional krb5-gss-samples-dbgsym_1.20.1-2+deb12u2_s390x.deb 3fcb16858f4630d66fe6935e3959802d 27144 net optional krb5-gss-samples_1.20.1-2+deb12u2_s390x.deb b3a8a1c5e9e4c11ca50e874877b7ba39 19432 debug optional krb5-k5tls-dbgsym_1.20.1-2+deb12u2_s390x.deb 02ecda7aea96b4f161b437bc8cebedbd 18464 net optional krb5-k5tls_1.20.1-2+deb12u2_s390x.deb a3ebb3c568f694cbb74918bfa7f0ca60 443280 debug optional krb5-kdc-dbgsym_1.20.1-2+deb12u2_s390x.deb dfa2381c2591c0ef3d1e0d5a0d7e37f8 184456 debug optional krb5-kdc-ldap-dbgsym_1.20.1-2+deb12u2_s390x.deb 4fce74bcae431be433186f1802295042 82152 net optional krb5-kdc-ldap_1.20.1-2+deb12u2_s390x.deb a333b70571144e853e41cf47f9dfa973 169904 net optional krb5-kdc_1.20.1-2+deb12u2_s390x.deb a49080b6a4430496528de44f0e876ecf 42444 debug optional krb5-kpropd-dbgsym_1.20.1-2+deb12u2_s390x.deb 2431f27ec5598c237a34e55b06d4431e 30368 net optional krb5-kpropd_1.20.1-2+deb12u2_s390x.deb 55b5ac07ac7d45f6e5846257b8b977fa 125024 libdevel optional krb5-multidev_1.20.1-2+deb12u2_s390x.deb cbe5275ee0faedf1b27719ae758f2411 28808 debug optional krb5-otp-dbgsym_1.20.1-2+deb12u2_s390x.deb 13810f03afd9acd132aa6573695e4ef8 20956 net optional krb5-otp_1.20.1-2+deb12u2_s390x.deb cd40894245e45c280949caea115f3054 154276 debug optional krb5-pkinit-dbgsym_1.20.1-2+deb12u2_s390x.deb cd722b2f60bf45d85792c4bb2134e0a8 53784 net optional krb5-pkinit_1.20.1-2+deb12u2_s390x.deb 16631ff79d9ab55a9e630b71e24c385e 192996 debug optional krb5-user-dbgsym_1.20.1-2+deb12u2_s390x.deb 3e1162706079a996dc907fc8b98445c3 113612 net optional krb5-user_1.20.1-2+deb12u2_s390x.deb 6a2d2e937b8709152142c4e001f4f966 15761 net optional krb5_1.20.1-2+deb12u2_s390x-buildd.buildinfo 0169023ad0ae7ca26206fdef6f3e880d 121732 libs optional libgssapi-krb5-2_1.20.1-2+deb12u2_s390x.deb 243cb18a061d50bc06bdad6f9e7dca80 54420 libs optional libgssrpc4_1.20.1-2+deb12u2_s390x.deb f9fba3291e399f7d14f5c63b04166769 76352 libs optional libk5crypto3_1.20.1-2+deb12u2_s390x.deb ec4efb011b36a264e8fa5c27f1c7dfab 38296 libs optional libkadm5clnt-mit12_1.20.1-2+deb12u2_s390x.deb e3cf31dc46b79c6bc497f52a82031fa7 50012 libs optional libkadm5srv-mit12_1.20.1-2+deb12u2_s390x.deb fd0563fdee6d5d295b2abb5b97a6bffd 39004 libs optional libkdb5-10_1.20.1-2+deb12u2_s390x.deb 0b0f7ac9e17da2547bd72f1271159485 15300 libdevel optional libkrad-dev_1.20.1-2+deb12u2_s390x.deb 3b8907e0927bcae9fa573f87a9081c55 23536 libs optional libkrad0_1.20.1-2+deb12u2_s390x.deb 750b2c8df44c087a05b384cb80956b37 310112 libs optional libkrb5-3_1.20.1-2+deb12u2_s390x.deb 1d16fc8aaa33b2f96ef2421e98879f47 2125668 debug optional libkrb5-dbg_1.20.1-2+deb12u2_s390x.deb b6cd678ae34689e25aa515efada9b94c 14832 libdevel optional libkrb5-dev_1.20.1-2+deb12u2_s390x.deb d2ea05b972b0fdb64e8547c1334e9ff0 31636 libs optional libkrb5support0_1.20.1-2+deb12u2_s390x.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEETdQgQHyJW2hcXsTC6b+AMjGgQHgFAmaDBg8ACgkQ6b+AMjGg QHhOcA/9G4qzbOAKX6fkOv+NSQIlI3iUrkoEhktAOO0PPMe1+zwUigtE0cmU23Yw QnoYaUhAfhEMcKAKttNdXg3C0dhjCiUOdY5cLo+1VJKo4/FhbM/7Uy1rLdFk0J/t TwkVq2aiv8VnfEu1V2fRxMWFTPUSUII4EsyOVlO8rUPmJaPDLvWjb6zUSMNrV8gl NJeicKEN1VjfaWFPBvmpdtIYugC4iikVFYA9sFRcE5iz2Ye5tgpDuKX3MH6cJURM znUhQ9oblWvbwX8aLU/XByDSz1BU1gba5Ub01WsXSfbycEWz1YCyOr7vTiIDNj+Q rUWjmy7FskfoV85A61HOtOe4WTznu5kI4ORUP1YPiGPJGY7utRL05NRB5ahjUwxh mCaATQyBKQgBVrHK+Ky28tl+6BpHlV8bMrooc/SnJri/cJLOuIV+qjStSiNBvWZ7 Gatq+yxw5GP8LfbVp9LroY20TFDB60iBy2mw+ouax+KU7gK9evVIemthapw7F4bb Kwiipzl7DUUfDMrT3LeXD+P/3RFfeTtjaQqTzDm0aH6Na6EyOE3exBCuM9X7+AMT 7fUaN4qhFrl+lyu3dFvSLJZtrG+v7Z9xphH0106wScqSeIdyj+IMMYfpSEKB0Zh4 DoCM8cTZfOi8nKdLATpcE9XRG0vridR8pba2W0/PNZ3a0adzI28= =05a0 -----END PGP SIGNATURE-----