138604a714
This is a bugfix release. The krb5-1.11 release series has reached the end of its maintenance period, and krb5-1.11.6 is the last planned release in the krb5-1.11 series. For new deployments, installers should prefer the krb5-1.13 release series or later. This commit deprecates this port. * Work around a gcc optimizer bug that could cause DB2 KDC database operations to spin in an infinite loop * Fix a backward compatibility problem with the LDAP KDB schema that could prevent krb5-1.11 and later from decoding entries created by krb5-1.6. * Handle certain invalid RFC 1964 GSS tokens correctly to avoid invalid memory reference vulnerabilities. [CVE-2014-4341 CVE-2014-4342] * Fix memory management vulnerabilities in GSSAPI SPNEGO. [CVE-2014-4343 CVE-2014-4344] * Fix buffer overflow vulnerability in LDAP KDB back end. [CVE-2014-4345] * Fix multiple vulnerabilities in the LDAP KDC back end. [CVE-2014-5354 CVE-2014-5353] * Fix multiple kadmind vulnerabilities, some of which are based in the gssrpc library. [CVE-2014-5352 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423] Security: dbf9e66c-bd50-11e4-a7ba-206a8a720317 CVE-2014-4341, CVE-2014-4342, CVE-2014-4343, CVE-2014-4344 CVE-2014-4345, CVE-2014-5354, CVE-2014-5353, CVE-2014-5352 CVE-2014-9421, CVE-2014-9422, CVE-2014-9423
4 lines
279 B
Text
4 lines
279 B
Text
SHA256 (krb5-1.11.6-signed.tar) = 8f2e879fe5d8f1d8bb1c740a3778cd910af423649e527eb230dbac42b510e743
|
|
SIZE (krb5-1.11.6-signed.tar) = 11755520
|
|
SHA256 (2015-001-patch-r111.txt) = d7e1ac2abf76e546680d2789d11aaafe3119a13bbdcd1008b742efea016816e2
|
|
SIZE (2015-001-patch-r111.txt) = 12128
|