Package: heimdal / 1.6~rc2+dfsg-9+deb8u1
Metadata
Package | Version | Patches format |
---|---|---|
heimdal | 1.6~rc2+dfsg-9+deb8u1 | 3.0 (quilt) |
Patch series
view the series filePatch | File delta | Description |
---|---|---|
nfs_des | (download) |
kdc/kerberos5.c |
3 2 + 1 - 0 ! |
--- |
020_maintainermode | (download) |
configure.ac |
1 1 + 0 - 0 ! |
--- |
021_debian | (download) |
doc/setup.texi |
2 1 + 1 - 0 ! |
--- |
022_openafs | (download) |
lib/krb5/keytab_keyfile.c |
4 2 + 2 - 0 ! |
--- |
024_rxtelnet | (download) |
appl/kx/rxtelnet.in |
2 1 + 1 - 0 ! |
--- |
025_krb5 config paths | (download) |
tools/krb5-config.in |
4 2 + 2 - 0 ! |
--- |
025_pthreads | (download) |
cf/pthreads.m4 |
2 1 + 1 - 0 ! |
--- |
030_pkg config paths | (download) |
tools/heimdal-gssapi.pc.in |
4 2 + 2 - 0 ! |
--- |
031_libedit | (download) |
cf/krb-readline.m4 |
4 2 + 2 - 0 ! |
--- |
041_hurd_maxhostnamelen | (download) |
appl/gssmask/gssmask.c |
4 2 + 2 - 0 ! |
--- |
installsh | (download) |
po/Makefile.am |
4 2 + 2 - 0 ! |
--- |
042_hurd_path_max | (download) |
lib/sl/slc-gram.y |
28 19 + 9 - 0 ! |
--- |
043_clean_headers | (download) |
include/Makefile.am |
2 0 + 2 - 0 ! |
--- |
044_hdb_ldap_static | (download) |
lib/hdb/hdb-ldap.c |
3 0 + 3 - 0 ! |
--- |
045_hx509_symbol_names | (download) |
lib/hx509/version-script.map |
8 6 + 2 - 0 ! |
--- |
046_hurd_sundevdata | (download) |
lib/kafs/afssys.c |
6 6 + 0 - 0 ! |
--- |
047_link_gssapi | (download) |
kadmin/Makefile.am |
1 1 + 0 - 0 ! |
link against just build gssapi, instead of the system one this resolves FTBFS when gssapi adds new symbols. |
048_private_libs | (download) |
tools/heimdal-gssapi.pc.in |
5 3 + 2 - 0 ! |
don't expose private libraries from .pc files |
049_testkdc_timeout | (download) |
tests/kdc/wait-kdc.sh |
2 1 + 1 - 0 ! |
--- |
050_kadmin_to_usr_bin | (download) |
admin/Makefile.am |
4 2 + 2 - 0 ! |
[patch] move kadmin and ktutil to /usr/bin. |
051_bug746486 memleak | (download) |
kdc/process.c |
4 2 + 2 - 0 ! |
fix memory leak in heimdal-kdc It has been discovered that heimdal-kdc doesn't a per-request memory allocation which can be lead to serious memory leak Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746486 |
CVE 2017 11103 Orpheus Lyre KDC REP service name val.patch | (download) |
lib/krb5/ticket.c |
4 2 + 2 - 0 ! |
[patch] cve-2017-11103: orpheus' lyre kdc-rep service name validation In _krb5_extract_ticket() the KDC-REP service name must be obtained from encrypted version stored in 'enc_part' instead of the unencrypted version stored in 'ticket'. Use of the unecrypted version provides an opportunity for successful server impersonation and other attacks. Identified by Jeffrey Altman, Viktor Duchovni and Nico Williams. |