Hello community, here is the log from the commit of package krb5 checked in at Thu Apr 12 17:50:55 CEST 2007. -------- --- krb5/krb5.changes 2007-03-29 12:45:45.000000000 +0200 +++ /mounts/work_src_done/STABLE/krb5/krb5.changes 2007-04-11 11:11:12.216005000 +0200 @@ -1,0 +2,14 @@ +Wed Apr 11 10:58:09 CEST 2007 - mc@suse.de + +- update krb5-1.6-post.dif + * fix kadmind stack overflow in krb5_klog_syslog + (MITKRB5-SA-2007-002 - CVE-2007-0957) + [#253548] + * fix double free attack in the RPC library + (MITKRB5-SA-2007-003 - CVE-2007-1216) + [#252487] + * fix krb5 telnetd login injection + (MIT-SA-2007-001 - CVE-2007-0956) + #247765 + +------------------------------------------------------------------- --- krb5/krb5-plugins.changes 2007-03-29 12:45:45.000000000 +0200 +++ /mounts/work_src_done/STABLE/krb5/krb5-plugins.changes 2007-04-11 11:11:12.219989000 +0200 @@ -1,0 +2,14 @@ +Wed Apr 11 10:59:20 CEST 2007 - mc@suse.de + +- update krb5-1.6-post.dif + * fix kadmind stack overflow in krb5_klog_syslog + (MITKRB5-SA-2007-002 - CVE-2007-0957) + [#253548] + * fix double free attack in the RPC library + (MITKRB5-SA-2007-003 - CVE-2007-1216) + [#252487] + * fix krb5 telnetd login injection + (MIT-SA-2007-001 - CVE-2007-0956) + #247765 + +------------------------------------------------------------------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ krb5-doc.spec ++++++ --- /var/tmp/diff_new_pack.h29404/_old 2007-04-12 17:50:16.000000000 +0200 +++ /var/tmp/diff_new_pack.h29404/_new 2007-04-12 17:50:16.000000000 +0200 @@ -13,7 +13,7 @@ Name: krb5-doc BuildRequires: ghostscript-library latex2html te_ams Version: 1.6 -Release: 19 +Release: 22 %define srcRoot krb5-1.6 Summary: MIT Kerberos5 Implementation--Documentation License: X11/MIT ++++++ krb5-plugins.spec ++++++ --- /var/tmp/diff_new_pack.h29404/_old 2007-04-12 17:50:16.000000000 +0200 +++ /var/tmp/diff_new_pack.h29404/_new 2007-04-12 17:50:16.000000000 +0200 @@ -13,7 +13,7 @@ Name: krb5-plugins Version: 1.6 -Release: 11 +Release: 12 BuildRequires: bison krb5-devel ncurses-devel openldap2-devel %define srcRoot krb5-1.6 %define vendorFiles %{_builddir}/%{srcRoot}/vendor-files/ @@ -205,6 +205,17 @@ %{_mandir}/man8/* %changelog +* Wed Apr 11 2007 - mc@suse.de +- update krb5-1.6-post.dif + * fix kadmind stack overflow in krb5_klog_syslog + (MITKRB5-SA-2007-002 - CVE-2007-0957) + [#253548] + * fix double free attack in the RPC library + (MITKRB5-SA-2007-003 - CVE-2007-1216) + [#252487] + * fix krb5 telnetd login injection + (MIT-SA-2007-001 - CVE-2007-0956) + [#247765] * Thu Mar 29 2007 - mc@suse.de - add ncurses-devel and bison to BuildRequires - rework some patches ++++++ krb5.spec ++++++ --- /var/tmp/diff_new_pack.h29404/_old 2007-04-12 17:50:16.000000000 +0200 +++ /var/tmp/diff_new_pack.h29404/_new 2007-04-12 17:50:16.000000000 +0200 @@ -12,7 +12,7 @@ Name: krb5 Version: 1.6 -Release: 17 +Release: 20 BuildRequires: bison libcom_err ncurses-devel %if %{suse_version} > 1010 BuildRequires: keyutils keyutils-devel @@ -492,6 +492,17 @@ %{_mandir}/man1/krb5-config.1* %changelog +* Wed Apr 11 2007 - mc@suse.de +- update krb5-1.6-post.dif + * fix kadmind stack overflow in krb5_klog_syslog + (MITKRB5-SA-2007-002 - CVE-2007-0957) + [#253548] + * fix double free attack in the RPC library + (MITKRB5-SA-2007-003 - CVE-2007-1216) + [#252487] + * fix krb5 telnetd login injection + (MIT-SA-2007-001 - CVE-2007-0956) + [#247765] * Thu Mar 29 2007 - mc@suse.de - add ncurses-devel and bison to BuildRequires - rework some patches ++++++ krb5-1.6-post.dif ++++++ ++++ 2827 lines (skipped) ++++ between krb5/krb5-1.6-post.dif ++++ and /mounts/work_src_done/STABLE/krb5/krb5-1.6-post.dif ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org