- There is no change made about the package itself, this is only

copying over some changelog texts from SLE package: - bug#918595 owned by varkoly@suse.com: VUL-0: CVE-2014-5355 krb5: denial of service in krb5_read_message - bug#912002 owned by varkoly@suse.com: VUL-0 CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423: krb5: Vulnerabilities in kadmind, libgssrpc, gss_process_context_token - bug#910458 owned by varkoly@suse.com: VUL-1 CVE-2014-5354: krb5: NULL pointer dereference when using keyless entries - bug#928978 owned by varkoly@suse.com: VUL-0 CVE-2015-2694: krb5: issues in OTP and PKINIT kdcpreauth modules leading to requires_preauth bypass - bug#910457 owned by varkoly@suse.com: VUL-1 CVE-2014-5353: krb5: NULL pointer dereference when using a ticket policy name as a password policy name - bug#991088 owned by hguo@suse.com: VUL-1 CVE-2016-3120: krb5: S4U2Self KDC crash when anon is restricted - bug#992853 owned by hguo@suse.com: krb5: bogus prerequires - [fate#320326](https://fate.suse.com/320326) - bug#982313 owned by pgajdos@suse.com: Doxygen unable to resolve reference from \cite - There is no change made about the package itself, this is only copying over some changelog texts from SLE package: - bug#918595 owned by varkoly@suse.com: VUL-0: CVE-2014-5355 krb5: denial of service in krb5_read_message - bug#912002 owned by varkoly@suse.com: VUL-0 CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423: krb5: Vulnerabilities in kadmind, libgssrpc, gss_process_context_token - bug#910458 owned by varkoly@suse.com: VUL-1 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=191
2017-06-06 13:39:13 +00:00 · 2017-06-06 13:39:13 +00:00 · 1d1e68ea09
commit 1d1e68ea09
parent 7566d42d93
2 changed files with 50 additions and 0 deletions
--- a/krb5-mini.changes
+++ b/krb5-mini.changes
@ -1,3 +1,28 @@
+-------------------------------------------------------------------
+Tue Jun  6 13:36:34 UTC 2017 - hguo@suse.com
+
+- There is no change made about the package itself, this is only
+  copying over some changelog texts from SLE package:
+- bug#918595 owned by varkoly@suse.com: VUL-0: CVE-2014-5355
+  krb5: denial of service in krb5_read_message
+- bug#912002 owned by varkoly@suse.com: VUL-0
+  CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423:
+  krb5: Vulnerabilities in kadmind, libgssrpc, gss_process_context_token
+- bug#910458 owned by varkoly@suse.com: VUL-1
+  CVE-2014-5354: krb5: NULL pointer dereference when using keyless entries
+- bug#928978 owned by varkoly@suse.com: VUL-0
+  CVE-2015-2694: krb5: issues in OTP and PKINIT kdcpreauth modules leading
+  to requires_preauth bypass
+- bug#910457 owned by varkoly@suse.com: VUL-1
+  CVE-2014-5353: krb5: NULL pointer dereference when using a ticket policy
+  name as a password policy name
+- bug#991088 owned by hguo@suse.com: VUL-1
+  CVE-2016-3120: krb5: S4U2Self KDC crash when anon is restricted
+- bug#992853 owned by hguo@suse.com: krb5: bogus prerequires
+- [fate#320326](https://fate.suse.com/320326)
+- bug#982313 owned by pgajdos@suse.com: Doxygen unable to resolve reference
+  from \cite
+
 -------------------------------------------------------------------
 Thu Apr  6 13:00:26 CEST 2017 - kukuk@suse.de

--- a/krb5.changes
+++ b/krb5.changes
@ -1,3 +1,28 @@
+-------------------------------------------------------------------
+Tue Jun  6 13:36:34 UTC 2017 - hguo@suse.com
+
+- There is no change made about the package itself, this is only
+  copying over some changelog texts from SLE package:
+- bug#918595 owned by varkoly@suse.com: VUL-0: CVE-2014-5355
+  krb5: denial of service in krb5_read_message
+- bug#912002 owned by varkoly@suse.com: VUL-0
+  CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423:
+  krb5: Vulnerabilities in kadmind, libgssrpc, gss_process_context_token
+- bug#910458 owned by varkoly@suse.com: VUL-1
+  CVE-2014-5354: krb5: NULL pointer dereference when using keyless entries
+- bug#928978 owned by varkoly@suse.com: VUL-0
+  CVE-2015-2694: krb5: issues in OTP and PKINIT kdcpreauth modules leading
+  to requires_preauth bypass
+- bug#910457 owned by varkoly@suse.com: VUL-1
+  CVE-2014-5353: krb5: NULL pointer dereference when using a ticket policy
+  name as a password policy name
+- bug#991088 owned by hguo@suse.com: VUL-1
+  CVE-2016-3120: krb5: S4U2Self KDC crash when anon is restricted
+- bug#992853 owned by hguo@suse.com: krb5: bogus prerequires
+- [fate#320326](https://fate.suse.com/320326)
+- bug#982313 owned by pgajdos@suse.com: Doxygen unable to resolve reference
+  from \cite
+
 -------------------------------------------------------------------
 Thu Apr  6 12:58:53 CEST 2017 - kukuk@suse.de