-
krb5 (1.20-1ubuntu0.1) kinetic-security; urgency=medium
* SECURITY UPDATE: Integer overflow
- debian/patches/CVE-2022-42898.patch: add buffer length checks in
krb5_pac_parse() in src/lib/krb5/krb/pac.c and a test case for
invalid buffers in src/lib/krb5/krb/t_pac.c.
- CVE-2022-42898
-- Rodrigo Figueiredo Zaiden <email address hidden> Fri, 20 Jan 2023 09:03:36 -0300
-
krb5 (1.20-1) unstable; urgency=medium
* New Upstream Version
* Do not specify master key type to avoid weak crypto, Closes: #1009927
-- Sam Hartman <email address hidden> Fri, 22 Jul 2022 16:32:38 -0600
-
krb5 (1.19.2-2) unstable; urgency=medium
* Standards version 4.6.0; no change
* kpropd: run after network.target, Closes: #948820
* krb5-kdc: Remove /var from PidFile, Closes: #982009
-- Sam Hartman <email address hidden> Mon, 21 Feb 2022 13:05:20 -0700