commit krb5 for openSUSE:Factory
Hello community, here is the log from the commit of package krb5 for openSUSE:Factory checked in at 2015-12-13 09:38:29 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/krb5 (Old) and /work/SRC/openSUSE:Factory/.krb5.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "krb5" Changes: -------- --- /work/SRC/openSUSE:Factory/krb5/krb5-mini.changes 2015-06-03 08:22:13.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.krb5.new/krb5-mini.changes 2015-12-13 09:38:30.000000000 +0100 @@ -1,0 +2,20 @@ +Mon Dec 7 08:04:45 UTC 2015 - michael@stroeder.com + +- Udapte to 1.13.3 + +Major changes in 1.13.3 (2015-12-04) +==================================== + +This is a bug fix release. The krb5-1.13 release series is in +maintenance, and for new deployments, installers should prefer the +krb5-1.14 release series or later. + +* Fix memory aliasing issues in SPNEGO and IAKERB mechanisms that + could cause server crashes. [CVE-2015-2695] [CVE-2015-2696] + [CVE-2015-2698] +* Fix build_principal memory bug that could cause a KDC + crash. [CVE-2015-2697] +* Allow an iprop slave to receive full resyncs from KDCs running + krb5-1.10 or earlier. + +------------------------------------------------------------------- --- /work/SRC/openSUSE:Factory/krb5/krb5.changes 2015-11-15 12:45:44.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.krb5.new/krb5.changes 2015-12-13 09:38:30.000000000 +0100 @@ -1,0 +2,25 @@ +Mon Dec 7 08:04:45 UTC 2015 - michael@stroeder.com + +- Udapte to 1.13.3 +- removed patches for security fixes now in upstream source: + 0100-Fix-build_principal-memory-bug-CVE-2015-2697.patch + 0101-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch + 0102-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch + 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch + +Major changes in 1.13.3 (2015-12-04) +==================================== + +This is a bug fix release. The krb5-1.13 release series is in +maintenance, and for new deployments, installers should prefer the +krb5-1.14 release series or later. + +* Fix memory aliasing issues in SPNEGO and IAKERB mechanisms that + could cause server crashes. [CVE-2015-2695] [CVE-2015-2696] + [CVE-2015-2698] +* Fix build_principal memory bug that could cause a KDC + crash. [CVE-2015-2697] +* Allow an iprop slave to receive full resyncs from KDCs running + krb5-1.10 or earlier. + +------------------------------------------------------------------- Old: ---- 0100-Fix-build_principal-memory-bug-CVE-2015-2697.patch 0101-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch 0102-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch krb5-1.13.2.tar.gz krb5-1.13.2.tar.gz.asc New: ---- krb5-1.13.3.tar.gz krb5-1.13.3.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ krb5-mini.spec ++++++ --- /var/tmp/diff_new_pack.fNv1Y6/_old 2015-12-13 09:38:32.000000000 +0100 +++ /var/tmp/diff_new_pack.fNv1Y6/_new 2015-12-13 09:38:32.000000000 +0100 @@ -17,7 +17,7 @@ %define build_mini 1 -%define srcRoot krb5-1.13.2 +%define srcRoot krb5-1.13.3 %define vendorFiles %{_builddir}/%{srcRoot}/vendor-files/ %define krb5docdir %{_defaultdocdir}/krb5 @@ -30,7 +30,7 @@ BuildRequires: libcom_err-devel BuildRequires: libselinux-devel BuildRequires: ncurses-devel -Version: 1.13.2 +Version: 1.13.3 Release: 0 Summary: MIT Kerberos5 Implementation--Libraries License: MIT ++++++ krb5.spec ++++++ --- /var/tmp/diff_new_pack.fNv1Y6/_old 2015-12-13 09:38:32.000000000 +0100 +++ /var/tmp/diff_new_pack.fNv1Y6/_new 2015-12-13 09:38:32.000000000 +0100 @@ -17,7 +17,7 @@ %define build_mini 0 -%define srcRoot krb5-1.13.2 +%define srcRoot krb5-1.13.3 %define vendorFiles %{_builddir}/%{srcRoot}/vendor-files/ %define krb5docdir %{_defaultdocdir}/krb5 @@ -30,7 +30,7 @@ BuildRequires: libcom_err-devel BuildRequires: libselinux-devel BuildRequires: ncurses-devel -Version: 1.13.2 +Version: 1.13.3 Release: 0 Summary: MIT Kerberos5 Implementation--Libraries License: MIT @@ -83,10 +83,6 @@ Patch12: krb5-1.12-selinux-label.patch Patch13: krb5-1.9-debuginfo.patch Patch14: krb5-kvno-230379.patch -Patch100: 0100-Fix-build_principal-memory-bug-CVE-2015-2697.patch -Patch101: 0101-Fix-IAKERB-context-aliasing-bugs-CVE-2015-2696.patch -Patch102: 0102-Fix-SPNEGO-context-aliasing-bugs-CVE-2015-2695.patch -Patch103: 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build PreReq: mktemp, grep, /bin/touch, coreutils PreReq: %fillup_prereq @@ -205,10 +201,6 @@ %patch12 -p1 %patch13 -p0 %patch14 -p1 -%patch100 -p1 -%patch101 -p1 -%patch102 -p1 -%patch103 -p1 %build # needs to be re-generated ++++++ krb5-1.13.2.tar.gz -> krb5-1.13.3.tar.gz ++++++ /work/SRC/openSUSE:Factory/krb5/krb5-1.13.2.tar.gz /work/SRC/openSUSE:Factory/.krb5.new/krb5-1.13.3.tar.gz differ: char 5, line 1
participants (1)
-
root@hilbert.suse.de