krb5 1.13.2+dfsg-5 source package in Ubuntu
Changelog
krb5 (1.13.2+dfsg-5) unstable; urgency=high
* Security Update
* Verify decoded kadmin C strings [CVE-2015-8629]
CVE-2015-8629: An authenticated attacker can cause kadmind to read
beyond the end of allocated memory by sending a string without a
terminating zero byte. Information leakage may be possible for an
attacker with permission to modify the database. (Closes: #813296)
* Check for null kadm5 policy name [CVE-2015-8630]
CVE-2015-8630: An authenticated attacker with permission to modify a
principal entry can cause kadmind to dereference a null pointer by
supplying a null policy value but including KADM5_POLICY in the mask.
(Closes: #813127)
* Fix leaks in kadmin server stubs [CVE-2015-8631]
CVE-2015-8631: An authenticated attacker can cause kadmind to leak
memory by supplying a null principal name in a request which uses one.
Repeating these requests will eventually cause kadmind to exhaust all
available memory. (Closes: #813126)
-- Sam Hartman <email address hidden> Tue, 23 Feb 2016 08:54:09 -0500
Upload details
- Uploaded by:
- Sam Hartman
- Uploaded to:
- Sid
- Original maintainer:
- Sam Hartman
- Architectures:
- any all
- Section:
- net
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Xenial | release | main | net |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| krb5_1.13.2+dfsg-5.dsc | 3.1 KiB | b52caa3fd7211250987f2f0319579992a7f2bc24c47c766fdfc0403945dbfbdb |
| krb5_1.13.2+dfsg.orig.tar.gz | 11.3 MiB | a7af3953e4ab52b17f80bdfc2fc7471b66b512b128520796e2b993554543873a |
| krb5_1.13.2+dfsg-5.debian.tar.xz | 99.6 KiB | 8f8c951a524af50b300f524cd14bd946ea802e81eddbc719f9b71719158b9c1d |
Available diffs
- diff from 1.13.2+dfsg-4 to 1.13.2+dfsg-5 (4.3 KiB)
No changes file available.
Binary packages built by this source
- krb5-admin-server: MIT Kerberos master server (kadmind)
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the Kerberos master server (kadmind), which handles
account creations and deletions, password changes, and other
administrative commands via the Kerberos admin protocol. It also
contains the command used by the master KDC to propagate its database to
slave KDCs. This package is generally only used on the master KDC for a
Kerberos realm.
- krb5-admin-server-dbgsym: debug symbols for package krb5-admin-server
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the Kerberos master server (kadmind), which handles
account creations and deletions, password changes, and other
administrative commands via the Kerberos admin protocol. It also
contains the command used by the master KDC to propagate its database to
slave KDCs. This package is generally only used on the master KDC for a
Kerberos realm.
- krb5-doc: No summary available for krb5-doc in ubuntu yakkety.
No description available for krb5-doc in ubuntu yakkety.
- krb5-gss-samples: No summary available for krb5-gss-samples in ubuntu yakkety.
No description available for krb5-gss-samples in ubuntu yakkety.
- krb5-gss-samples-dbgsym: debug symbols for package krb5-gss-samples
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains bgss-sample and gss-server, programs used to
test GSS-API mechanisms. These programs are most commonly used in
testing newly developed GSS-API mechanisms or in testing events
between Kerberos or GSS implementations.
- krb5-k5tls: TLS plugin for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains a plugin for the TLS functionality used by optional
functionality in MIT Kerberos. The only current consumer is client support
for the MS-KKDCP protocol, which tunnels Kerberos protocol traffic through
an HTTPS proxy.
- krb5-k5tls-dbgsym: No summary available for krb5-k5tls-dbgsym in ubuntu yakkety.
No description available for krb5-k5tls-dbgsym in ubuntu yakkety.
- krb5-kdc: No summary available for krb5-kdc in ubuntu yakkety.
No description available for krb5-kdc in ubuntu yakkety.
- krb5-kdc-dbgsym: debug symbols for package krb5-kdc
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the Kerberos key server (KDC). The KDC manages all
authentication credentials for a Kerberos realm, holds the master keys
for the realm, and responds to authentication requests. This package
should be installed on both master and slave KDCs.
- krb5-kdc-ldap: MIT Kerberos key server (KDC) LDAP plugin
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the LDAP plugin for the Kerberos key server (KDC)
and supporting utilities. This plugin allows the KDC data to be stored
in an LDAP server rather than the default local database. It should be
installed on both master and slave KDCs that use LDAP as a storage
backend.
- krb5-kdc-ldap-dbgsym: debug symbols for package krb5-kdc-ldap
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the LDAP plugin for the Kerberos key server (KDC)
and supporting utilities. This plugin allows the KDC data to be stored
in an LDAP server rather than the default local database. It should be
installed on both master and slave KDCs that use LDAP as a storage
backend.
- krb5-locales: Internationalization support for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains internationalized messages for MIT Kerberos.
- krb5-multidev: No summary available for krb5-multidev in ubuntu yakkety.
No description available for krb5-multidev in ubuntu yakkety.
- krb5-multidev-dbgsym: debug symbols for package krb5-multidev
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
Most users wishing to build applications against MIT Kerberos should
install libkrb5-dev. However, that package conflicts with heimdal-dev.
This package installs libraries and headers in /usr/include/mit-krb5 and
/usr/lib/mit-krb5 and can be installed along side heimdal-multidev, which
provides the same facilities for Heimdal.
- krb5-otp: OTP plugin for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains a plugin for the OTP preauthentication method
(RFC 6560), which allows Kerberos tickets to be obtained using
One-Time Password authentication. This plugin is for use on the KDC; the
client support is built in to libkrb5.
- krb5-otp-dbgsym: debug symbols for package krb5-otp
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains a plugin for the OTP preauthentication method
(RFC 6560), which allows Kerberos tickets to be obtained using
One-Time Password authentication. This plugin is for use on the KDC; the
client support is built in to libkrb5.
- krb5-pkinit: PKINIT plugin for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains a plugin for the PKINIT protocol, which allows
Kerberos tickets to be obtained using public-key credentials such as
X.509 certificates or a smart card. This plugin can be used by the
client libraries and the KDC.
- krb5-pkinit-dbgsym: No summary available for krb5-pkinit-dbgsym in ubuntu yakkety.
No description available for krb5-pkinit-dbgsym in ubuntu yakkety.
- krb5-user: Basic programs to authenticate using MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the basic programs to authenticate to MIT Kerberos,
change passwords, and talk to the admin server (to create and delete
principals, list principals, etc.).
- krb5-user-dbgsym: No summary available for krb5-user-dbgsym in ubuntu yakkety.
No description available for krb5-user-dbgsym in ubuntu yakkety.
- libgssapi-krb5-2: No summary available for libgssapi-krb5-2 in ubuntu yakkety.
No description available for libgssapi-krb5-2 in ubuntu yakkety.
- libgssapi-krb5-2-dbgsym: debug symbols for package libgssapi-krb5-2
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library for the MIT Kerberos
implementation of GSS-API used by applications and Kerberos clients.
- libgssrpc4: No summary available for libgssrpc4 in ubuntu yakkety.
No description available for libgssrpc4 in ubuntu yakkety.
- libgssrpc4-dbgsym: debug symbols for package libgssrpc4
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains an RPC library used by the Kerberos administrative
programs and potentially other applications.
- libk5crypto3: MIT Kerberos runtime libraries - Crypto Library
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime cryptography libraries used by
applications and Kerberos clients.
- libk5crypto3-dbgsym: debug symbols for package libk5crypto3
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime cryptography libraries used by
applications and Kerberos clients.
- libkadm5clnt-mit9: MIT Kerberos runtime libraries - Administration Clients
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library used by clients of the Kerberos
administration protocol.
- libkadm5clnt-mit9-dbgsym: debug symbols for package libkadm5clnt-mit9
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the runtime library used by clients of the Kerberos
administration protocol.
- libkadm5srv-mit9: No summary available for libkadm5srv-mit9 in ubuntu yakkety.
No description available for libkadm5srv-mit9 in ubuntu yakkety.
- libkadm5srv-mit9-dbgsym: No summary available for libkadm5srv-mit9-dbgsym in ubuntu yakkety.
No description available for libkadm5srv-
mit9-dbgsym in ubuntu yakkety.
- libkdb5-8: MIT Kerberos runtime libraries - Kerberos database
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the internal Kerberos database libraries.
- libkdb5-8-dbgsym: debug symbols for package libkdb5-8
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the internal Kerberos database libraries.
- libkrad-dev: MIT Kerberos RADIUS Library Development
This package includes development headers for libkrad0, the MIT
Kerberos RADIUS library. You should not use this RADIUS library in
packages unrelated to MIT Kerberos.
- libkrad-dev-dbgsym: debug symbols for package libkrad-dev
This package includes development headers for libkrad0, the MIT
Kerberos RADIUS library. You should not use this RADIUS library in
packages unrelated to MIT Kerberos.
- libkrad0: No summary available for libkrad0 in ubuntu yakkety.
No description available for libkrad0 in ubuntu yakkety.
- libkrad0-dbgsym: debug symbols for package libkrad0
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the internal support library for RADIUS functionality.
- libkrb5-3: No summary available for libkrb5-3 in ubuntu yakkety.
No description available for libkrb5-3 in ubuntu yakkety.
- libkrb5-3-dbgsym: No summary available for libkrb5-3-dbgsym in ubuntu yakkety.
No description available for libkrb5-3-dbgsym in ubuntu yakkety.
- libkrb5-dbg: Debugging files for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the debugging information for the MIT Kerberos
libraries. Install this package if you need to trace problems inside the
MIT Kerberos libraries with a debugger.
- libkrb5-dev: Headers and development libraries for MIT Kerberos
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the symlinks, headers, and development libraries
needed to compile and link programs that use the Kerberos libraries.
- libkrb5-dev-dbgsym: debug symbols for package libkrb5-dev
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains the symlinks, headers, and development libraries
needed to compile and link programs that use the Kerberos libraries.
- libkrb5support0: MIT Kerberos runtime libraries - Support library
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service. That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
.
This is the MIT reference implementation of Kerberos V5.
.
This package contains an internal runtime support library used by other
Kerberos libraries.
- libkrb5support0-dbgsym: No summary available for libkrb5support0-dbgsym in ubuntu yakkety.
No description available for libkrb5support0
-dbgsym in ubuntu yakkety.
