-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 05 Jul 2011 12:01:35 -0400 Source: krb5-appl Binary: krb5-clients krb5-rsh-server krb5-ftpd krb5-telnetd Architecture: kfreebsd-amd64 Version: 1:1.0.1-1.1 Distribution: squeeze-security Urgency: high Maintainer: kfreebsd-amd64 Build Daemon (fasch) Changed-By: Sam Hartman Description: krb5-clients - Secure replacements for ftp, telnet and rsh using MIT Kerberos krb5-ftpd - Secure FTP server supporting MIT Kerberos krb5-rsh-server - Secure replacements for rshd and rlogind using MIT Kerberos krb5-telnetd - Secure telnet server supporting MIT Kerberos Changes: krb5-appl (1:1.0.1-1.1) stable-security; urgency=high . * cve-2011-1526, mit-sa-2011-005: Krb5 ftpd fails to set correct group permissions. The ftp daemon always runs with the group permissions of the user it is started as, probably the root group. Checksums-Sha1: b2de2b63dd648d319ce9623c3c1200b2a975ac9b 179736 krb5-clients_1.0.1-1.1_kfreebsd-amd64.deb eb546a401ce94a24a17e66cb685fe4befd9b69d8 62550 krb5-rsh-server_1.0.1-1.1_kfreebsd-amd64.deb 8e5bc2ffbbb39f3d8d31f4ad3c6b96533453a4cb 46644 krb5-ftpd_1.0.1-1.1_kfreebsd-amd64.deb 5598f78b0118a345876954a7252368f6e13b4bc1 53050 krb5-telnetd_1.0.1-1.1_kfreebsd-amd64.deb Checksums-Sha256: 69c6035ddaee5e32af0576ec48e062ffe0c9e51ea6b61126b19a8b344ef3b4b1 179736 krb5-clients_1.0.1-1.1_kfreebsd-amd64.deb a1b8bc8cd773a22389387bf5ff41c535c3c8b3d99a458faee73e6cabfbf0a15a 62550 krb5-rsh-server_1.0.1-1.1_kfreebsd-amd64.deb 919453e30d254e953fdb69a4e8c7b98699543bd980c60060a701ebbd099736cb 46644 krb5-ftpd_1.0.1-1.1_kfreebsd-amd64.deb 0492e5a77d130c90171d2d55b2a914ad27e2e9ae817871c3efd6631a973f01d9 53050 krb5-telnetd_1.0.1-1.1_kfreebsd-amd64.deb Files: 0a0f4c415fabee62e3f8784d273087aa 179736 net optional krb5-clients_1.0.1-1.1_kfreebsd-amd64.deb c0bdb4fc36ef543e8eb5e2a3bb5ced28 62550 net extra krb5-rsh-server_1.0.1-1.1_kfreebsd-amd64.deb ddd2d8386f849929b379e3e8e4a4c861 46644 net extra krb5-ftpd_1.0.1-1.1_kfreebsd-amd64.deb d71a7c81231a8e209e18d8278b645745 53050 net extra krb5-telnetd_1.0.1-1.1_kfreebsd-amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQIcBAEBCAAGBQJOjKUaAAoJEMXOXcLFQs1Zqk4QAJGHqt+5SuHrEFUC58EAy5ZH JMaHJPzAHkKHIdH/9xhHbGpZcMvRlFm+MZmylYtaED69FPqaXuq85C3yPV7URc5B 23ym0j1j1ezgE9bblRoOYfX6tUt4expyZgt2suXBpYKt8pH6uR05jEfoUPiu3/V7 dGcX3XZbu/gv1tZM+2gblDMZJNQWdTs0phCor85ad7UW/d3Di0KWcjuXX0tTTl1/ KK0uG3PUfAp1p2e6Xa6fQ9BUta96/DOJOAaVZVtPImtQzBGYAkmPoj1budu4IJuj OjTWLgnBYahX0wAZLrWAVWdI1Xxc3BKqcIEFxHs0klCCBezCvO/RArRQdU/emjFa +vSwbuI6fnpSPHFH7FgCdL5uG15T2Ku5BGhlyMjY/uLArakkcMCwYSESCJkoUhJB LBe38Jl+wv98LNDR4gbOO2mWsxutB0NH1m5kw0Cjh6needi4x6u81cVk28hu2cFZ 2y/VeXJeCsoH+2ut4Q4lPLD0W6hpOwPMFvamDSyWh80Mruwgg303QzH0Dk1a4QTv UvcmDCOl0Tf3Mz+HSCNVPP6P2gVlawperml15frYIIZAYzfFMY4OH+Ak9/CafFO5 Tu9yLUbOGz/lduAu9iDGKTHUvKtdPoY1fGH+Iurxn65M+fvaDluxTMP3tY+ve6WY FnawTZt3jhwlJT6590HJ =OV2D -----END PGP SIGNATURE-----