Accepted libpam-heimdal 2.5-1etch1 (source i386)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 09 Feb 2009 15:04:13 -0800
Source: libpam-heimdal
Binary: libpam-heimdal
Architecture: source i386
Version: 2.5-1etch1
Distribution: stable-security
Urgency: high
Maintainer: Matthijs Mohlmann <matthijs@cacholong.nl>
Changed-By: Russ Allbery <rra@debian.org>
Description:
libpam-heimdal - PAM module for Heimdal Kerberos 5
Changes:
libpam-heimdal (2.5-1etch1) stable-security; urgency=high
.
* Non-maintainer security upload.
* SECURITY (CVE-2009-0361): Protect against applications calling
pam_setcred with PAM_REINITIALIZE_CREDS as root in a setuid context.
This API call is designed to reinitialize an existing Kerberos ticket
cache and therefore trusts the KRB5CCNAME environment variable, but in
a setuid context, this may allow overwriting arbitrary files.
Files:
09e39eb1552950761fdcc51babceef11 699 net optional libpam-heimdal_2.5-1etch1.dsc
a80c66fcf0c48608abfb5ff0c443ab94 117834 net optional libpam-heimdal_2.5.orig.tar.gz
3e178b9617aadc2e030c07fec659330c 8208 net optional libpam-heimdal_2.5-1etch1.diff.gz
c1b56b35fb35c0d700de6ea53d753a4e 37652 net optional libpam-heimdal_2.5-1etch1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkmRKDwACgkQ+YXjQAr8dHaDIACfXEVfQ6gxAsAQilk9Zt+XySZn
Jh0AoJqb4OJ8I3Y1zlKD4S7wruWPvFtv
=irCx
-----END PGP SIGNATURE-----
Accepted:
libpam-heimdal_2.5-1etch1.diff.gz
to pool/main/libp/libpam-heimdal/libpam-heimdal_2.5-1etch1.diff.gz
libpam-heimdal_2.5-1etch1.dsc
to pool/main/libp/libpam-heimdal/libpam-heimdal_2.5-1etch1.dsc
libpam-heimdal_2.5-1etch1_i386.deb
to pool/main/libp/libpam-heimdal/libpam-heimdal_2.5-1etch1_i386.deb
Reply to: