Publishing details
Changelog
heimdal (7.8.git20221117.28daf24+dfsg-1ubuntu1) lunar; urgency=low
* Merge from Debian unstable. Remaining changes:
- d/rules: Disable lto, to regain dep on roken, otherwise
dependencies on amd64 are different than i386 resulting in
different files on amd64 and i386.
(LP #1934936)
heimdal (7.8.git20221117.28daf24+dfsg-1) unstable; urgency=medium
* New upstream release.
heimdal (7.8.git20221115.a6cf945+dfsg-3) unstable; urgency=medium
* Source-only upload to enable migration to testingi (2nd attempt).
heimdal (7.8.git20221115.a6cf945+dfsg-2) unstable; urgency=medium
* Source-only upload to enable migration to testing.
heimdal (7.8.git20221115.a6cf945+dfsg-1) unstable; urgency=medium
* New upstream version.
* Numerous security fixes (Closes: #1024187).
* asn1: Invalid free in ASN.1 codec (CVE-2022-44640)
* krb5: PAC parse integer overflows (CVE-2022-42898)
* gsskrb5: Use constant-time memcmp() for arcfour unwrap (CVE-2022-3437)
* gsskrb5: Use constant-time memcmp() in unwrap_des3() (CVE-2022-3437)
* gsskrb5: Don't pass NULL pointers to memcpy() in DES unwrap
(CVE-2022-3437)
* gsskrb5: Avoid undefined behaviour in _gssapi_verify_pad()
(CVE-2022-3437)
* gsskrb5: Check the result of _gsskrb5_get_mech() (CVE-2022-3437)
* gsskrb5: Check buffer length against overflow for DES{,3} unwrap
(CVE-2022-3437)
* gsskrb5: Check for overflow in _gsskrb5_get_mech() (CVE-2022-3437)
* gsskrb5: Pass correct length to _gssapi_verify_pad() (CVE-2022-3437)
* libhx509: Fix denial of service vulnerability (CVE-2022-41916)
* spnego: send_reject when no mech selected (CVE-2021-44758)
* Fix regression in _krb5_get_int64 on 32 bit systems.
https://github.com/heimdal/heimdal/pull/1025
* Increment soname for libroken.
* Increment soname for libhcrypto.
* Remove legacy shared library version requirements.
* Add symbols to libkadm5srv8.
-- Steve Langasek <email address hidden> Tue, 24 Jan 2023 19:14:54 -0800
Builds
Built packages
-
heimdal-clients
Heimdal Kerberos - clients
-
heimdal-clients-dbgsym
debug symbols for heimdal-clients
-
heimdal-dev
Heimdal Kerberos - development files
-
heimdal-docs
Heimdal Kerberos - documentation
-
heimdal-kcm
Heimdal Kerberos - KCM daemon
-
heimdal-kcm-dbgsym
debug symbols for heimdal-kcm
-
heimdal-kdc
Heimdal Kerberos - key distribution center (KDC)
-
heimdal-kdc-dbgsym
debug symbols for heimdal-kdc
-
heimdal-multidev
Heimdal Kerberos - Multi-implementation Development
-
heimdal-multidev-dbgsym
debug symbols for heimdal-multidev
-
heimdal-servers
Heimdal Kerberos - server programs
-
heimdal-servers-dbgsym
debug symbols for heimdal-servers
-
libasn1-8-heimdal
Heimdal Kerberos - ASN.1 library
-
libasn1-8-heimdal-dbgsym
debug symbols for libasn1-8-heimdal
-
libgssapi3-heimdal
Heimdal Kerberos - GSSAPI support library
-
libgssapi3-heimdal-dbgsym
debug symbols for libgssapi3-heimdal
-
libhcrypto5-heimdal
Heimdal Kerberos - crypto library
-
libhcrypto5-heimdal-dbgsym
debug symbols for libhcrypto5-heimdal
-
libhdb9-heimdal
Heimdal Kerberos - kadmin server library
-
libhdb9-heimdal-dbgsym
debug symbols for libhdb9-heimdal
-
libheimbase1-heimdal
Heimdal Kerberos - Base library
-
libheimbase1-heimdal-dbgsym
debug symbols for libheimbase1-heimdal
-
libheimntlm0-heimdal
Heimdal Kerberos - NTLM support library
-
libheimntlm0-heimdal-dbgsym
debug symbols for libheimntlm0-heimdal
-
libhx509-5-heimdal
Heimdal Kerberos - X509 support library
-
libhx509-5-heimdal-dbgsym
debug symbols for libhx509-5-heimdal
-
libkadm5clnt7-heimdal
Heimdal Kerberos - kadmin client library
-
libkadm5clnt7-heimdal-dbgsym
debug symbols for libkadm5clnt7-heimdal
-
libkadm5srv8-heimdal
Libraries for Heimdal Kerberos
-
libkadm5srv8-heimdal-dbgsym
debug symbols for libkadm5srv8-heimdal
-
libkafs0-heimdal
Heimdal Kerberos - KAFS support library
-
libkafs0-heimdal-dbgsym
debug symbols for libkafs0-heimdal
-
libkdc2-heimdal
Heimdal Kerberos - KDC support library
-
libkdc2-heimdal-dbgsym
debug symbols for libkdc2-heimdal
-
libkrb5-26-heimdal
Heimdal Kerberos - libraries
-
libkrb5-26-heimdal-dbgsym
debug symbols for libkrb5-26-heimdal
-
libotp0-heimdal
Heimdal Kerberos - OTP support library
-
libotp0-heimdal-dbgsym
debug symbols for libotp0-heimdal
-
libroken19-heimdal
Heimdal Kerberos - roken support library
-
libroken19-heimdal-dbgsym
debug symbols for libroken19-heimdal
-
libsl0-heimdal
Heimdal Kerberos - SL support library
-
libsl0-heimdal-dbgsym
debug symbols for libsl0-heimdal
-
libwind0-heimdal
Heimdal Kerberos - stringprep implementation
-
libwind0-heimdal-dbgsym
debug symbols for libwind0-heimdal
Package files