rpms/pam_krb5/F-11 pam_krb5.spec,1.68,1.69 sources,1.55,1.56
Nalin Dahyabhai
nalin at fedoraproject.org
Tue Jun 9 22:20:22 UTC 2009
- Previous message (by thread): rpms/pam_krb5/F-10 pam_krb5.spec,1.65,1.66 sources,1.53,1.54
- Next message (by thread): rpms/pam_krb5/F-9 pam_krb5.spec, 1.64, 1.65 sources, 1.51, 1.52 pam_krb5-2.3.0-ccacheperms.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: nalin
Update of /cvs/pkgs/rpms/pam_krb5/F-11
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv28368/F-11
Modified Files:
pam_krb5.spec sources
Log Message:
- update to 2.3.5 to fix CVE-2009-1384
Index: pam_krb5.spec
===================================================================
RCS file: /cvs/pkgs/rpms/pam_krb5/F-11/pam_krb5.spec,v
retrieving revision 1.68
retrieving revision 1.69
diff -u -p -r1.68 -r1.69
--- pam_krb5.spec 4 Mar 2009 21:01:59 -0000 1.68
+++ pam_krb5.spec 9 Jun 2009 22:19:51 -0000 1.69
@@ -1,10 +1,11 @@
Summary: A Pluggable Authentication Module for Kerberos 5.
Name: pam_krb5
-Version: 2.3.4
+Version: 2.3.5
Release: 1%{?dist}
Source0: pam_krb5-%{version}-1.tar.gz
License: BSD or LGPLv2+
Group: System Environment/Base
+URL: https://fedorahosted.org/pam_krb5/
BuildPrereq: keyutils-libs-devel, krb5-devel, pam-devel
BuildRoot: %{_tmppath}/%{name}-root
@@ -49,6 +50,13 @@ sed -ri -e 's|/lib(64)?/|/\$LIB/|g' $RPM
%doc README* COPYING* ChangeLog NEWS
%changelog
+* Tue May 26 2009 Nalin Dahyabhai <nalin at redhat.com> - 2.3.5-1
+- catch the case where we pass a NULL initial password into libkrb5 and
+ it uses our callback to ask us for the password for the user using a
+ principal name, and reject that (#502602)
+- always prompt for a password unless we were told not to (#502602,
+ CVE-2009-1384)
+
* Wed Mar 4 2009 Nalin Dahyabhai <nalin at redhat.com> - 2.3.4-1
- don't request password-changing credentials with the same options that we
use when requesting ticket granting tickets, which might run afoul of KDC
Index: sources
===================================================================
RCS file: /cvs/pkgs/rpms/pam_krb5/F-11/sources,v
retrieving revision 1.55
retrieving revision 1.56
diff -u -p -r1.55 -r1.56
--- sources 4 Mar 2009 21:01:59 -0000 1.55
+++ sources 9 Jun 2009 22:19:51 -0000 1.56
@@ -1 +1 @@
-87480e590c31e6b6a0fabc2ba3fbf7ae pam_krb5-2.3.4-1.tar.gz
+24978d4b0886e6cc83baa00124937143 pam_krb5-2.3.5-1.tar.gz
- Previous message (by thread): rpms/pam_krb5/F-10 pam_krb5.spec,1.65,1.66 sources,1.53,1.54
- Next message (by thread): rpms/pam_krb5/F-9 pam_krb5.spec, 1.64, 1.65 sources, 1.51, 1.52 pam_krb5-2.3.0-ccacheperms.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list