diff options
author | Nalin Dahyabhai <nalin@redhat.com> | 2014-07-16 15:13:24 -0400 |
---|---|---|
committer | Nalin Dahyabhai <nalin@redhat.com> | 2014-07-16 15:13:24 -0400 |
commit | c42f43ea1ddb1bccddfa56d03740e02a34be57b2 (patch) | |
tree | a2f3e0dde691a004747a7ebdcb0b1b00ac59f2a4 /krb5.spec | |
parent | 96223069416bf958abed24f0624699b7e115f799 (diff) | |
download | krb5-c42f43ea1ddb1bccddfa56d03740e02a34be57b2.tar.gz krb5-c42f43ea1ddb1bccddfa56d03740e02a34be57b2.tar.xz krb5-c42f43ea1ddb1bccddfa56d03740e02a34be57b2.zip |
Add proposed fix for a double-free in gss clientskrb5-1.11.5-9.fc20
- gssapi: pull in proposed fix for a double free in initiators (David
Woodhouse, #1117963)
Diffstat (limited to 'krb5.spec')
-rw-r--r-- | krb5.spec | 10 |
1 files changed, 9 insertions, 1 deletions
@@ -41,7 +41,7 @@ Summary: The Kerberos network authentication system Name: krb5 Version: 1.11.5 -Release: 8%{?dist} +Release: 9%{?dist} # Maybe we should explode from the now-available-to-everybody tarball instead? # http://web.mit.edu/kerberos/dist/krb5/1.11/krb5-1.11.5-signed.tar Source0: krb5-%{version}.tar.gz @@ -127,6 +127,8 @@ Patch161: krb5-1.11-mechd.patch Patch162: krb5-1.12-CVE-2014-4341_4342.patch Patch163: krb5-1.11-CVE-2014-4341_4342-tests.patch +Patch164: krb5-gssapi-mech-doublefree.patch + # Patches for otp plugin backport Patch201: krb5-1.11.2-keycheck.patch Patch202: krb5-1.11.2-otp.patch @@ -413,6 +415,8 @@ ln -s NOTICE LICENSE %patch162 -p1 -b .CVE-2014-4341_4342 %patch163 -p1 -b .CVE-2014-4341_4342-tests +%patch164 -p1 -b .gssapi-mech-doublefree + %patch201 -p1 -b .keycheck %patch202 -p1 -b .otp %patch203 -p1 -b .otp2 @@ -1085,6 +1089,10 @@ exit 0 %{_sbindir}/uuserver %changelog +* Wed Jul 16 2014 Nalin Dahyabhai <nalin@redhat.com> - 1.11.5-9 +- gssapi: pull in proposed fix for a double free in initiators (David + Woodhouse, #1117963) + * Mon Jul 7 2014 Nalin Dahyabhai <nalin@redhat.com> - 1.11.5-8 - pull in fix for denial of service by injection of malformed GSSAPI tokens (CVE-2014-4341, CVE-2014-4342, #1116181) |