rpms/krb5/F-10 krb5.spec, 1.177, 1.178 krb5-1.6.3-spnego-crash.patch, 1.1, NONE
Nalin Dahyabhai
nalin at fedoraproject.org
Tue Apr 7 18:16:57 UTC 2009
- Previous message (by thread): rpms/libmkv/F-10 import.log, NONE, 1.1 libmkv.spec, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Next message (by thread): rpms/krb5/F-11 krb5.spec, 1.180, 1.181 krb5-1.6.3-spnego-crash.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: nalin
Update of /cvs/extras/rpms/krb5/F-10
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv14391/F-10
Modified Files:
krb5.spec
Removed Files:
krb5-1.6.3-spnego-crash.patch
Log Message:
- remove obsolete patch for CVE-2009-0845
- add patches for read overflow and null pointer dereference in the
implementation of the SPNEGO mechanism (CVE-2009-0844, CVE-2009-0845)
- add patch for attempt to free uninitialized pointer in libkrb5
(CVE-2009-0846)
- add patch to fix length validation bug in libkrb5 (CVE-2009-0847)
Index: krb5.spec
===================================================================
RCS file: /cvs/extras/rpms/krb5/F-10/krb5.spec,v
retrieving revision 1.177
retrieving revision 1.178
diff -u -r1.177 -r1.178
--- krb5.spec 17 Mar 2009 22:22:59 -0000 1.177
+++ krb5.spec 7 Apr 2009 18:16:27 -0000 1.178
@@ -16,7 +16,7 @@
Summary: The Kerberos network authentication system.
Name: krb5
Version: 1.6.3
-Release: 17%{?dist}
+Release: 18%{?dist}
# Maybe we should explode from the now-available-to-everybody tarball instead?
# http://web.mit.edu/kerberos/dist/krb5/1.6/krb5-1.6.2-signed.tar
Source0: krb5-%{version}.tar.gz
@@ -102,7 +102,9 @@
Patch78: krb5-1.6.3-lucid-acceptor.patch
Patch79: krb5-trunk-ftp_mget_case.patch
Patch80: krb5-trunk-preauth-master.patch
-Patch81: krb5-1.6.3-spnego-crash.patch
+Patch82: krb5-CVE-2009-0844-0845-2.patch
+Patch83: krb5-CVE-2009-0846.patch
+Patch84: krb5-CVE-2009-0847.patch
License: MIT
URL: http://web.mit.edu/kerberos/www/
@@ -233,6 +235,13 @@
certificate.
%changelog
+* Tue Apr 7 2009 Nalin Dahyabhai <nalin at redhat.com> 1.6.3-18
+- add patches for read overflow and null pointer dereference in the
+ implementation of the SPNEGO mechanism (CVE-2009-0844, CVE-2009-0845)
+- add patch for attempt to free uninitialized pointer in libkrb5
+ (CVE-2009-0846)
+- add patch to fix length validation bug in libkrb5 (CVE-2009-0847)
+
* Tue Mar 17 2009 Nalin Dahyabhai <nalin at redhat.com> 1.6.3-17
- libgssapi_krb5: backport fix for some errors which can occur when
we fail to set up the server half of a context (CVE-2009-0845)
@@ -1395,7 +1404,9 @@
%patch78 -p0 -b .lucid_acceptor
%patch79 -p0 -b .ftp_mget_case
%patch80 -p0 -b .preauth_master
-%patch81 -p0 -b .spnego-crash
+%patch82 -p1 -b .CVE-2009-0844-0845-2
+%patch83 -p1 -b .CVE-2009-0846
+%patch84 -p1 -b .CVE-2009-0847
cp src/krb524/README README.krb524
gzip doc/*.ps
--- krb5-1.6.3-spnego-crash.patch DELETED ---
- Previous message (by thread): rpms/libmkv/F-10 import.log, NONE, 1.1 libmkv.spec, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Next message (by thread): rpms/krb5/F-11 krb5.spec, 1.180, 1.181 krb5-1.6.3-spnego-crash.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list