Hello community, here is the log from the commit of package krb5 for openSUSE:Factory checked in at 2017-10-01 16:58:35 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/krb5 (Old) and /work/SRC/openSUSE:Factory/.krb5.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "krb5" Sun Oct 1 16:58:35 2017 rev:130 rq:528906 version:1.15.2 Changes: -------- --- /work/SRC/openSUSE:Factory/krb5/krb5-mini.changes 2017-08-21 11:32:26.856948324 +0200 +++ /work/SRC/openSUSE:Factory/.krb5.new/krb5-mini.changes 2017-10-01 16:58:39.393365341 +0200 @@ -1,0 +2,15 @@ +Mon Sep 25 19:45:05 UTC 2017 - michael@stroeder.com + +- Upgrade to 1.15.2 + * Fix a KDC denial of service vulnerability caused by unset status + strings [CVE-2017-11368] + * Preserve GSS contexts on init/accept failure [CVE-2017-11462] + * Fix kadm5 setkey operation with LDAP KDB module + * Use a ten-second timeout after successful connection for HTTPS KDC + requests, as we do for TCP requests + * Fix client null dereference when KDC offers encrypted challenge + without FAST + * Ignore dotfiles when processing profile includedir directive + * Improve documentation + +------------------------------------------------------------------- krb5.changes: same change Old: ---- krb5-1.15.1.tar.gz krb5-1.15.1.tar.gz.asc New: ---- krb5-1.15.2.tar.gz krb5-1.15.2.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ krb5-mini.spec ++++++ --- /var/tmp/diff_new_pack.gIAzp8/_old 2017-10-01 16:58:40.545203301 +0200 +++ /var/tmp/diff_new_pack.gIAzp8/_new 2017-10-01 16:58:40.549202738 +0200 @@ -16,7 +16,7 @@ # -%define srcRoot krb5-1.15.1 +%define srcRoot krb5-1.15.2 %define vendorFiles %{_builddir}/%{srcRoot}/vendor-files/ %define krb5docdir %{_defaultdocdir}/krb5 @@ -29,7 +29,7 @@ BuildRequires: libcom_err-devel BuildRequires: libselinux-devel BuildRequires: ncurses-devel -Version: 1.15.1 +Version: 1.15.2 Release: 0 Summary: MIT Kerberos5 implementation and libraries with minimal dependencies License: MIT ++++++ krb5.spec ++++++ --- /var/tmp/diff_new_pack.gIAzp8/_old 2017-10-01 16:58:40.573199362 +0200 +++ /var/tmp/diff_new_pack.gIAzp8/_new 2017-10-01 16:58:40.573199362 +0200 @@ -25,7 +25,7 @@ BuildRequires: libcom_err-devel BuildRequires: libselinux-devel BuildRequires: ncurses-devel -Version: 1.15.1 +Version: 1.15.2 Release: 0 Summary: MIT Kerberos5 Implementation--Libraries License: MIT ++++++ krb5-1.15.1.tar.gz -> krb5-1.15.2.tar.gz ++++++ /work/SRC/openSUSE:Factory/krb5/krb5-1.15.1.tar.gz /work/SRC/openSUSE:Factory/.krb5.new/krb5-1.15.2.tar.gz differ: char 5, line 1