From f7aad59b957c997715d668c449b7eaac82b34a6b1dbde4ddfc145076e630d727 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Michael=20Str=C3=B6der?= <michael@stroeder.com>
Date: Wed, 27 Sep 2017 08:29:01 +0000
Subject: [PATCH] Accepting request 528703 from home:stroeder:branches:network

- Upgrade to 1.15.2
  * Fix a KDC denial of service vulnerability caused by unset status
    strings [CVE-2017-11368]
  * Preserve GSS contexts on init/accept failure [CVE-2017-11462]
  * Fix kadm5 setkey operation with LDAP KDB module
  * Use a ten-second timeout after successful connection for HTTPS KDC
    requests, as we do for TCP requests
  * Fix client null dereference when KDC offers encrypted challenge
    without FAST
  * Ignore dotfiles when processing profile includedir directive
  * Improve documentation
- Upgrade to 1.15.2
  * Fix a KDC denial of service vulnerability caused by unset status
    strings [CVE-2017-11368]
  * Preserve GSS contexts on init/accept failure [CVE-2017-11462]
  * Fix kadm5 setkey operation with LDAP KDB module
  * Use a ten-second timeout after successful connection for HTTPS KDC
    requests, as we do for TCP requests
  * Fix client null dereference when KDC offers encrypted challenge
    without FAST
  * Ignore dotfiles when processing profile includedir directive
  * Improve documentation

OBS-URL: https://build.opensuse.org/request/show/528703
OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=196
---
 krb5-1.15.1.tar.gz     |  3 ---
 krb5-1.15.1.tar.gz.asc | 17 -----------------
 krb5-1.15.2.tar.gz     |  3 +++
 krb5-1.15.2.tar.gz.asc | 17 +++++++++++++++++
 krb5-mini.changes      | 15 +++++++++++++++
 krb5-mini.spec         |  4 ++--
 krb5.changes           | 15 +++++++++++++++
 krb5.spec              |  2 +-
 8 files changed, 53 insertions(+), 23 deletions(-)
 delete mode 100644 krb5-1.15.1.tar.gz
 delete mode 100644 krb5-1.15.1.tar.gz.asc
 create mode 100644 krb5-1.15.2.tar.gz
 create mode 100644 krb5-1.15.2.tar.gz.asc

diff --git a/krb5-1.15.1.tar.gz b/krb5-1.15.1.tar.gz
deleted file mode 100644
index 5e96d8e..0000000
--- a/krb5-1.15.1.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:437c8831ddd5fde2a993fef425dedb48468109bb3d3261ef838295045a89eb45
-size 9375538
diff --git a/krb5-1.15.1.tar.gz.asc b/krb5-1.15.1.tar.gz.asc
deleted file mode 100644
index cd38b20..0000000
--- a/krb5-1.15.1.tar.gz.asc
+++ /dev/null
@@ -1,17 +0,0 @@
------BEGIN PGP SIGNATURE-----
-Version: GnuPG v1
-
-iQIVAwUAWLmTPQy6CFdfg3LfAQKWgBAAnahZbh9rFKBor8lz8icPdOAPyF7QP9xM
-aDlxANUePQxN7BG68MPNL0A4/kIB1QHVl07t9vEnPBMKuF6RfVS1Sl9LYvxAF5Gf
-pp5nbOOYf8bs5V/isMYjAu61D4Hyr/anKYZsbOTcR+c5CI4UXAB1uaznGcTUT+vL
-MJie3ebWxJOPhv2HhkMU4BMkBxnGs1ONNsmU7yvCnbf6kgxpLaVITDzKGDrjIdQu
-ej6HZQpwidUZDRICFks6pY4ASfSBEzUGswnnhdsq3uvUhxm5F6jn097K+3nIydVT
-SgbJX4sBn5iJBBNumRZZ3OAovwBN+6XKM54ELWgyeQCY3Pk2P8qTojIWaqNJtyuf
-q0FSR16rWKq7ZRxHwgc93YETmzIkdil5WFnTpAtqVR5RFOL/GNGh5Dwn645mC3XY
-WOFBaVhX1libl+GApJjwriIzZ3e+gtaqsYa/A473BGJL+mKCp8xOfeTXeZCTCVgo
-x32NhUcXTxr6RRCq/WTEH6reu4oU+VkostCv3yknHOHatYbzh2DDni+mUVnUpGw8
-WEh3XNjHrjPQ5Vr1F7/aIhmG80QXVKWfJgrVVTwUXjk8+v0enTWudsKYVanvPZDN
-Yo1Jqrgc7tfRJpirVpJKxS0rNt/ES2I4heLkoz8j/DnDNqNmKV718jWVAms6jjuR
-Cunhql8OvtU=
-=Tvr2
------END PGP SIGNATURE-----
diff --git a/krb5-1.15.2.tar.gz b/krb5-1.15.2.tar.gz
new file mode 100644
index 0000000..118cbc3
--- /dev/null
+++ b/krb5-1.15.2.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:1639e392edf25e3b6cfec2ae68f97eb53e07c2dbe74bfeede0108465d5d1c87e
+size 9380755
diff --git a/krb5-1.15.2.tar.gz.asc b/krb5-1.15.2.tar.gz.asc
new file mode 100644
index 0000000..29a77ee
--- /dev/null
+++ b/krb5-1.15.2.tar.gz.asc
@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1
+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+=nYjU
+-----END PGP SIGNATURE-----
diff --git a/krb5-mini.changes b/krb5-mini.changes
index 1e5f700..0eb5b87 100644
--- a/krb5-mini.changes
+++ b/krb5-mini.changes
@@ -1,3 +1,18 @@
+-------------------------------------------------------------------
+Mon Sep 25 19:45:05 UTC 2017 - michael@stroeder.com
+
+- Upgrade to 1.15.2
+  * Fix a KDC denial of service vulnerability caused by unset status
+    strings [CVE-2017-11368]
+  * Preserve GSS contexts on init/accept failure [CVE-2017-11462]
+  * Fix kadm5 setkey operation with LDAP KDB module
+  * Use a ten-second timeout after successful connection for HTTPS KDC
+    requests, as we do for TCP requests
+  * Fix client null dereference when KDC offers encrypted challenge
+    without FAST
+  * Ignore dotfiles when processing profile includedir directive
+  * Improve documentation
+
 -------------------------------------------------------------------
 Fri Aug 18 08:27:26 UTC 2017 - hguo@suse.com
 
diff --git a/krb5-mini.spec b/krb5-mini.spec
index b36d40e..e092b79 100644
--- a/krb5-mini.spec
+++ b/krb5-mini.spec
@@ -16,7 +16,7 @@
 #
 
 
-%define srcRoot krb5-1.15.1
+%define srcRoot krb5-1.15.2
 %define vendorFiles %{_builddir}/%{srcRoot}/vendor-files/
 %define krb5docdir  %{_defaultdocdir}/krb5
 
@@ -29,7 +29,7 @@ BuildRequires:  keyutils-devel
 BuildRequires:  libcom_err-devel
 BuildRequires:  libselinux-devel
 BuildRequires:  ncurses-devel
-Version:        1.15.1
+Version:        1.15.2
 Release:        0
 Summary:        MIT Kerberos5 implementation and libraries with minimal dependencies
 License:        MIT
diff --git a/krb5.changes b/krb5.changes
index 19e26be..7782049 100644
--- a/krb5.changes
+++ b/krb5.changes
@@ -1,3 +1,18 @@
+-------------------------------------------------------------------
+Mon Sep 25 19:45:05 UTC 2017 - michael@stroeder.com
+
+- Upgrade to 1.15.2
+  * Fix a KDC denial of service vulnerability caused by unset status
+    strings [CVE-2017-11368]
+  * Preserve GSS contexts on init/accept failure [CVE-2017-11462]
+  * Fix kadm5 setkey operation with LDAP KDB module
+  * Use a ten-second timeout after successful connection for HTTPS KDC
+    requests, as we do for TCP requests
+  * Fix client null dereference when KDC offers encrypted challenge
+    without FAST
+  * Ignore dotfiles when processing profile includedir directive
+  * Improve documentation
+
 -------------------------------------------------------------------
 Fri Aug 18 08:27:26 UTC 2017 - hguo@suse.com
 
diff --git a/krb5.spec b/krb5.spec
index a1c9176..a3381c1 100644
--- a/krb5.spec
+++ b/krb5.spec
@@ -25,7 +25,7 @@ BuildRequires:  keyutils-devel
 BuildRequires:  libcom_err-devel
 BuildRequires:  libselinux-devel
 BuildRequires:  ncurses-devel
-Version:        1.15.1
+Version:        1.15.2
 Release:        0
 Summary:        MIT Kerberos5 Implementation--Libraries
 License:        MIT