Accepting request 850135 from home:scabrero:branches:network

- Update to 1.18.3 * Fix a denial of service vulnerability when decoding Kerberos protocol messages. * Fix a locking issue with the LMDB KDB module which could cause KDC and kadmind processes to lose access to the database. * Fix an assertion failure when libgssapi_krb5 is repeatedly loaded and unloaded while libkrb5support remains loaded. - Update to 1.18.3 * Fix a denial of service vulnerability when decoding Kerberos protocol messages. * Fix a locking issue with the LMDB KDB module which could cause KDC and kadmind processes to lose access to the database. * Fix an assertion failure when libgssapi_krb5 is repeatedly loaded and unloaded while libkrb5support remains loaded. OBS-URL: https://build.opensuse.org/request/show/850135 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=241
2020-12-05 17:18:57 +00:00 · 2020-12-05 17:18:57 +00:00 · 964a1412da
commit 964a1412da
parent 97a10d8037
8 changed files with 43 additions and 21 deletions
--- a/krb5-1.18.2.tar.gz
+++ b/krb5-1.18.2.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:c6e4c9ec1a98141c3f5d66ddf1a135549050c9fab4e9a4620ee9b22085873ae0
-size 8713927
--- a/krb5-1.18.2.tar.gz.asc
+++ b/krb5-1.18.2.tar.gz.asc
@ -1,16 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEExEk8tzn0qJ+YUsvCDLoIV1+Dct8FAl7H9FAACgkQDLoIV1+D
-ct+rjxAAqLlDjeExNw1sJyyjaAKzo7vGzK0tFVouMglmmGcyluVwsqu9B2uHw3UC
-TIm4bn1rgGtUB5oKWmbeD+hiuoAghLDa6gSrmDDkJfFR+o/K/vE7BGZewrrp7QJ5
-jJnEhjuY9O+ZFM/ZNEwHa4/RNG1ga5uJUrfdlNkTUMFje5d1TXvx/ozuSk4bAUTF
-nqHuJsyRAuhKcqTOZ9nr5a54me97CbWj7Be6sA7LQVaFDPyWcJCQsBHjFyextTOF
-3ewsF7330B3oO8yE9/f+nxFq/x9ot6CctMXZqLzhbvdzcO2GwmwbvXy73ibhvjVU
-w9n/zQ1xDjRO0z1wfM54Vq1upQW78+YXA33fEX6od0WBzdiR/o7hfU3arg/WraUy
-pVcD9V7jvYhGPpqYwEdRhs4qROhAh/yvebZ+MVe/1Pd8kA4tTXtR+VmVkp21X3cq
-+19eTz7actQemfdsUvfcL8guub0Mea/l+1l3cEHl20FOEeZ8RjpPMisYS9IrJ52O
-3lro26vYFSWS4+U9j4gwdjuQwLS3xHuPZFwS7aykKGsIQ1r8l5Yb0xorDXXKKLjm
-z4DNPaZbxxfcGhDWKTlDudrXEIAGTOD4FC1SJBV3hbqUsv4EH+EJnf92rmVMJ5z/
-AmeUKsL02Abl3BjhwaLWmhIwoXIUhcI/5xNsoI6ePCAT2HLyJlE=
-=fGT7
-----END PGP SIGNATURE-----
--- a/krb5-1.18.3.tar.gz
+++ b/krb5-1.18.3.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:e61783c292b5efd9afb45c555a80dd267ac67eebabca42185362bee6c4fbd719
+size 8715312
--- a/krb5-1.18.3.tar.gz.asc
+++ b/krb5-1.18.3.tar.gz.asc
@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=bdBU
+-----END PGP SIGNATURE-----
--- a/krb5-mini.changes
+++ b/krb5-mini.changes
@ -1,3 +1,14 @@
+-------------------------------------------------------------------
+Thu Nov 19 09:30:13 UTC 2020 - Samuel Cabrero <scabrero@suse.de>
+
+- Update to 1.18.3
+  * Fix a denial of service vulnerability when decoding Kerberos
+    protocol messages.
+  * Fix a locking issue with the LMDB KDB module which could cause
+    KDC and kadmind processes to lose access to the database.
+  * Fix an assertion failure when libgssapi_krb5 is repeatedly loaded
+    and unloaded while libkrb5support remains loaded.
+
 -------------------------------------------------------------------
 Tue Jul  7 17:38:11 UTC 2020 - Andreas Schwab <schwab@suse.de>

--- a/krb5-mini.spec
+++ b/krb5-mini.spec
@ -24,7 +24,7 @@
  %define _fillupdir %{_localstatedir}/adm/fillup-templates
 %endif
 Name:           krb5-mini
-Version:        1.18.2
+Version:        1.18.3
 Release:        0
 Summary:        MIT Kerberos5 implementation and libraries with minimal dependencies
 License:        MIT
--- a/krb5.changes
+++ b/krb5.changes
@ -1,3 +1,14 @@
+-------------------------------------------------------------------
+Thu Nov 19 09:30:13 UTC 2020 - Samuel Cabrero <scabrero@suse.de>
+
+- Update to 1.18.3
+  * Fix a denial of service vulnerability when decoding Kerberos
+    protocol messages.
+  * Fix a locking issue with the LMDB KDB module which could cause
+    KDC and kadmind processes to lose access to the database.
+  * Fix an assertion failure when libgssapi_krb5 is repeatedly loaded
+    and unloaded while libkrb5support remains loaded.
+
 -------------------------------------------------------------------
 Tue Jul  7 17:38:11 UTC 2020 - Andreas Schwab <schwab@suse.de>

--- a/krb5.spec
+++ b/krb5.spec
@ -21,7 +21,7 @@
  %define _fillupdir %{_localstatedir}/adm/fillup-templates
 %endif
 Name:           krb5
-Version:        1.18.2
+Version:        1.18.3
 Release:        0
 Summary:        MIT Kerberos5 implementation
 License:        MIT