krb5 1.10+dfsg~beta1-2ubuntu0.5 source package in Ubuntu
Changelog
krb5 (1.10+dfsg~beta1-2ubuntu0.5) precise-security; urgency=medium * SECURITY UPDATE: denial of service via crafted Draft 9 request - debian/patches/CVE-2012-1016.patch: don't check for an agility KDF identifier in src/plugins/preauth/pkinit/pkinit_srv.c. - CVE-2012-1016 * SECURITY UPDATE: denial of service via malformed KRB5_PADATA_PK_AS_REQ AS-REQ request - debian/patches/CVE-2013-1415.patch: don't dereference null pointer in src/plugins/preauth/pkinit/pkinit_crypto_openssl.c. - CVE-2013-1415 * SECURITY UPDATE: denial of service via crafted TGS-REQ request - debian/patches/CVE-2013-1416.patch: don't pass null pointer to strlcpy() in src/kdc/do_tgs_req.c. - CVE-2013-1416 * SECURITY UPDATE: multi-realm denial of service via crafted request - debian/patches/CVE-2013-1418.patch: don't dereference a null pointer in src/kdc/main.c. - CVE-2013-1418 - CVE-2013-6800 * SECURITY UPDATE: denial of service via invalid tokens - debian/patches/CVE-2014-4341-4342.patch: handle invalid tokens in src/lib/gssapi/krb5/k5unseal.c, src/lib/gssapi/krb5/k5unsealiov.c. - CVE-2014-4341 - CVE-2014-4342 * SECURITY UPDATE: denial of service via double-free in SPNEGO - debian/patches/CVE-2014-4343.patch: fix double-free in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2014-4343 * SECURITY UPDATE: denial of service via null deref in SPNEGO acceptor - debian/patches/CVE-2014-4344.patch: validate REMAIN in src/lib/gssapi/spnego/spnego_mech.c. - CVE-2014-4344 * SECURITY UPDATE: denial of service and possible code execution in kadmind with LDAP backend - debian/patches/CVE-2014-4345.patch: fix off-by-one in src/plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c - CVE-2014-4345 -- Marc Deslauriers <email address hidden> Fri, 08 Aug 2014 15:02:11 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Precise
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
krb5_1.10+dfsg~beta1.orig.tar.gz | 10.1 MiB | a2d5367618d5a4c8ae89f7a2f7eb908494fd39ae55cd4e30e753c9a092541b3a |
krb5_1.10+dfsg~beta1-2ubuntu0.5.debian.tar.gz | 121.7 KiB | b99b06981fca9cd314fc80d23c39eaeae64ed2859c65a96b2df5fcc28f1ca507 |
krb5_1.10+dfsg~beta1-2ubuntu0.5.dsc | 3.0 KiB | b2d1d50b9e93d9ac08accc90bb458e6bbdc09ff337545d65adb1f7a2708f5795 |
Available diffs
Binary packages built by this source
- krb5-admin-server: MIT Kerberos master server (kadmind)
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the Kerberos master server (kadmind), which handles
account creations and deletions, password changes, and other
administrative commands via the Kerberos admin protocol. It also
contains the command used by the master KDC to propagate its database to
slave KDCs. This package is generally only used on the master KDC for a
Kerberos realm.
- krb5-doc: Documentation for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the installation, administrator, and user reference
manuals for MIT Kerberos and the man pages for the MIT Kerberos
configuration files.
- krb5-gss-samples: MIT Kerberos GSS Sample applications
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains bgss-sample and gss-server, programs used to
test GSS-API mechanisms. These programs are most commonly used in
testing newly developed GSS-API mechanisms or in testing events
between Kerberos or GSS implementations.
- krb5-kdc: MIT Kerberos key server (KDC)
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the Kerberos key server (KDC). The KDC manages all
authentication credentials for a Kerberos realm, holds the master keys
for the realm, and responds to authentication requests. This package
should be installed on both master and slave KDCs.
- krb5-kdc-ldap: MIT Kerberos key server (KDC) LDAP plugin
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the LDAP plugin for the Kerberos key server (KDC)
and supporting utilities. This plugin allows the KDC data to be stored
in an LDAP server rather than the default local database. It should be
installed on both master and slave KDCs that use LDAP as a storage
backend.
- krb5-locales: Internationalization support for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains internationalized messages for MIT Kerberos.
- krb5-multidev: Development files for MIT Kerberos without Heimdal conflict
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
Most users wishing to build applications against MIT Kerberos should
install libkrb5-dev. However, that package conflicts with heimdal-dev.
This package installs libraries and headers in /usr/include/mit-krb5 and
/usr/lib/mit-krb5 and can be installed along side heimdal-multidev, which
provides the same facilities for Heimdal.
- krb5-pkinit: PKINIT plugin for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains a plugin for the PKINIT protocol, which allows
Kerberos tickets to be obtained using public-key credentials such as
X.509 certificates or a smart card. This plugin can be used by the
client libraries and the KDC.
- krb5-user: Basic programs to authenticate using MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the basic programs to authenticate to MIT Kerberos,
change passwords, and talk to the admin server (to create and delete
principals, list principals, etc.).
- libgssapi-krb5-2: MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library for the MIT Kerberos
implementation of GSS-API used by applications and Kerberos clients.
- libgssrpc4: MIT Kerberos runtime libraries - GSS enabled ONCRPC
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains an RPC library used by the Kerberos administrative
programs and potentially other applications.
- libk5crypto3: MIT Kerberos runtime libraries - Crypto Library
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime cryptography libraries used by
applications and Kerberos clients.
- libkadm5clnt-mit8: MIT Kerberos runtime libraries - Administration Clients
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library used by clients of the Kerberos
administration protocol.
- libkadm5srv-mit8: MIT Kerberos runtime libraries - KDC and Admin Server
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library used by Kerberos administrative
servers.
- libkdb5-6: MIT Kerberos runtime libraries - Kerberos database
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the internal Kerberos database libraries.
- libkrb5-3: MIT Kerberos runtime libraries
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library for the main Kerberos v5 API
used by applications and Kerberos clients.
- libkrb5-dbg: Debugging files for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the debugging information for the MIT Kerberos
libraries. Install this package if you need to trace problems inside the
MIT Kerberos libraries with a debugger.
- libkrb5-dev: Headers and development libraries for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the symlinks, headers, and development libraries
needed to compile and link programs that use the Kerberos libraries.
- libkrb53: transitional package for MIT Kerberos libraries
This package provides transitions to allow previously installed
packages that do not depend on krb4 libraries to continue to
function. This package may be removed if unneeded.
- libkrb5support0: MIT Kerberos runtime libraries - Support library
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains an internal runtime support library used by other
Kerberos libraries.