Accepting request 38408 from network
Copy from network/krb5 based on submit request 38408 from user mcalmer OBS-URL: https://build.opensuse.org/request/show/38408 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=50
This commit is contained in:
commit
3d2694c0dd
20
krb5-1.7-MITKRB5-SA-2010-004.dif
Normal file
20
krb5-1.7-MITKRB5-SA-2010-004.dif
Normal file
@ -0,0 +1,20 @@
|
||||
Index: krb5-1.8.1/src/kdc/do_tgs_req.c
|
||||
===================================================================
|
||||
--- krb5-1.8.1.orig/src/kdc/do_tgs_req.c
|
||||
+++ krb5-1.8.1/src/kdc/do_tgs_req.c
|
||||
@@ -543,6 +543,7 @@ tgt_again:
|
||||
to the caller */
|
||||
ticket_reply = *(header_ticket);
|
||||
enc_tkt_reply = *(header_ticket->enc_part2);
|
||||
+ enc_tkt_reply.authorization_data = NULL;
|
||||
clear(enc_tkt_reply.flags, TKT_FLG_INVALID);
|
||||
}
|
||||
|
||||
@@ -554,6 +555,7 @@ tgt_again:
|
||||
to the caller */
|
||||
ticket_reply = *(header_ticket);
|
||||
enc_tkt_reply = *(header_ticket->enc_part2);
|
||||
+ enc_tkt_reply.authorization_data = NULL;
|
||||
|
||||
old_life = enc_tkt_reply.times.endtime - enc_tkt_reply.times.starttime;
|
||||
|
@ -21,7 +21,7 @@
|
||||
Name: krb5-doc
|
||||
BuildRequires: ghostscript-library latex2html texlive
|
||||
Version: 1.8.1
|
||||
Release: 1
|
||||
Release: 2
|
||||
%define srcRoot krb5-1.8.1
|
||||
Summary: MIT Kerberos5 Implementation--Documentation
|
||||
License: MIT License (or similar)
|
||||
|
@ -1,3 +1,9 @@
|
||||
-------------------------------------------------------------------
|
||||
Wed Apr 14 11:36:32 CEST 2010 - mc@suse.de
|
||||
|
||||
- fix a double free vulnerability in the KDC
|
||||
CVE-2010-1320, MITKRB5-SA-2010-004 (bnc#596002)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Apr 9 12:43:44 CEST 2010 - mc@suse.de
|
||||
|
||||
|
@ -28,7 +28,7 @@ Url: http://web.mit.edu/kerberos/www/
|
||||
BuildRequires: bison libcom_err-devel ncurses-devel
|
||||
BuildRequires: keyutils keyutils-devel
|
||||
Version: 1.8.1
|
||||
Release: 1
|
||||
Release: 2
|
||||
%if ! 0%{?build_mini}
|
||||
BuildRequires: libopenssl-devel openldap2-devel
|
||||
# bug437293
|
||||
@ -47,14 +47,15 @@ Source1: vendor-files.tar.bz2
|
||||
Source2: baselibs.conf
|
||||
Source5: krb5-%{version}-rpmlintrc
|
||||
Source10: krb5-1.7-manpaths.txt
|
||||
Patch2: krb5-1.6.1-compile_pie.dif
|
||||
Patch20: krb5-1.6.3-kprop-use-mkstemp.dif
|
||||
Patch30: krb5-1.7-manpaths.dif
|
||||
Patch32: krb5-1.4.3-enospc.dif
|
||||
Patch34: krb5-1.6.3-gssapi_improve_errormessages.dif
|
||||
Patch41: krb5-1.6.3-kpasswd_tcp.patch
|
||||
Patch44: krb5-1.6.3-ktutil-manpage.dif
|
||||
Patch46: krb5-1.6.3-fix-ipv6-query.dif
|
||||
Patch1: krb5-1.6.1-compile_pie.dif
|
||||
Patch2: krb5-1.6.3-kprop-use-mkstemp.dif
|
||||
Patch3: krb5-1.7-manpaths.dif
|
||||
Patch4: krb5-1.4.3-enospc.dif
|
||||
Patch5: krb5-1.6.3-gssapi_improve_errormessages.dif
|
||||
Patch6: krb5-1.6.3-kpasswd_tcp.patch
|
||||
Patch7: krb5-1.6.3-ktutil-manpage.dif
|
||||
Patch8: krb5-1.6.3-fix-ipv6-query.dif
|
||||
Patch9: krb5-1.7-MITKRB5-SA-2010-004.dif
|
||||
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
||||
PreReq: mktemp, grep, /bin/touch, coreutils
|
||||
PreReq: %insserv_prereq %fillup_prereq
|
||||
@ -194,14 +195,15 @@ Authors:
|
||||
%prep
|
||||
%setup -q -n %{srcRoot}
|
||||
%setup -a 1 -T -D -n %{srcRoot}
|
||||
%patch1
|
||||
%patch2
|
||||
%patch20
|
||||
%patch30 -p1
|
||||
%patch32 -p1
|
||||
%patch34 -p1
|
||||
%patch41
|
||||
%patch44 -p1
|
||||
%patch46 -p1
|
||||
%patch3 -p1
|
||||
%patch4 -p1
|
||||
%patch5 -p1
|
||||
%patch6
|
||||
%patch7 -p1
|
||||
%patch8 -p1
|
||||
%patch9 -p1
|
||||
# Rename the man pages so that they'll get generated correctly.
|
||||
pushd src
|
||||
cat %{SOURCE10} | while read manpage ; do
|
||||
|
@ -1,3 +1,9 @@
|
||||
-------------------------------------------------------------------
|
||||
Wed Apr 14 11:36:32 CEST 2010 - mc@suse.de
|
||||
|
||||
- fix a double free vulnerability in the KDC
|
||||
CVE-2010-1320, MITKRB5-SA-2010-004 (bnc#596002)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Apr 9 12:43:44 CEST 2010 - mc@suse.de
|
||||
|
||||
|
34
krb5.spec
34
krb5.spec
@ -28,7 +28,7 @@ Url: http://web.mit.edu/kerberos/www/
|
||||
BuildRequires: bison libcom_err-devel ncurses-devel
|
||||
BuildRequires: keyutils keyutils-devel
|
||||
Version: 1.8.1
|
||||
Release: 1
|
||||
Release: 2
|
||||
%if ! 0%{?build_mini}
|
||||
BuildRequires: libopenssl-devel openldap2-devel
|
||||
# bug437293
|
||||
@ -47,14 +47,15 @@ Source1: vendor-files.tar.bz2
|
||||
Source2: baselibs.conf
|
||||
Source5: krb5-%{version}-rpmlintrc
|
||||
Source10: krb5-1.7-manpaths.txt
|
||||
Patch2: krb5-1.6.1-compile_pie.dif
|
||||
Patch20: krb5-1.6.3-kprop-use-mkstemp.dif
|
||||
Patch30: krb5-1.7-manpaths.dif
|
||||
Patch32: krb5-1.4.3-enospc.dif
|
||||
Patch34: krb5-1.6.3-gssapi_improve_errormessages.dif
|
||||
Patch41: krb5-1.6.3-kpasswd_tcp.patch
|
||||
Patch44: krb5-1.6.3-ktutil-manpage.dif
|
||||
Patch46: krb5-1.6.3-fix-ipv6-query.dif
|
||||
Patch1: krb5-1.6.1-compile_pie.dif
|
||||
Patch2: krb5-1.6.3-kprop-use-mkstemp.dif
|
||||
Patch3: krb5-1.7-manpaths.dif
|
||||
Patch4: krb5-1.4.3-enospc.dif
|
||||
Patch5: krb5-1.6.3-gssapi_improve_errormessages.dif
|
||||
Patch6: krb5-1.6.3-kpasswd_tcp.patch
|
||||
Patch7: krb5-1.6.3-ktutil-manpage.dif
|
||||
Patch8: krb5-1.6.3-fix-ipv6-query.dif
|
||||
Patch9: krb5-1.7-MITKRB5-SA-2010-004.dif
|
||||
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
||||
PreReq: mktemp, grep, /bin/touch, coreutils
|
||||
PreReq: %insserv_prereq %fillup_prereq
|
||||
@ -194,14 +195,15 @@ Authors:
|
||||
%prep
|
||||
%setup -q -n %{srcRoot}
|
||||
%setup -a 1 -T -D -n %{srcRoot}
|
||||
%patch1
|
||||
%patch2
|
||||
%patch20
|
||||
%patch30 -p1
|
||||
%patch32 -p1
|
||||
%patch34 -p1
|
||||
%patch41
|
||||
%patch44 -p1
|
||||
%patch46 -p1
|
||||
%patch3 -p1
|
||||
%patch4 -p1
|
||||
%patch5 -p1
|
||||
%patch6
|
||||
%patch7 -p1
|
||||
%patch8 -p1
|
||||
%patch9 -p1
|
||||
# Rename the man pages so that they'll get generated correctly.
|
||||
pushd src
|
||||
cat %{SOURCE10} | while read manpage ; do
|
||||
|
Loading…
Reference in New Issue
Block a user