Add proposed fix for a double-free in gss clientskrb5-1.11.5-9.fc20

- gssapi: pull in proposed fix for a double free in initiators (David
  Woodhouse, #1117963)

1 files changed, 9 insertions, 1 deletions

diff --git a/krb5.spec b/krb5.spec
index 66d9689..1aabc09 100644
--- a/krb5.spec
+++ b/krb5.spec
@@ -41,7 +41,7 @@
 Summary: The Kerberos network authentication system
 Name: krb5
 Version: 1.11.5
-Release: 8%{?dist}
+Release: 9%{?dist}
 # Maybe we should explode from the now-available-to-everybody tarball instead?
 # http://web.mit.edu/kerberos/dist/krb5/1.11/krb5-1.11.5-signed.tar
 Source0: krb5-%{version}.tar.gz
@@ -127,6 +127,8 @@ Patch161: krb5-1.11-mechd.patch
 Patch162: krb5-1.12-CVE-2014-4341_4342.patch
 Patch163: krb5-1.11-CVE-2014-4341_4342-tests.patch
 
+Patch164: krb5-gssapi-mech-doublefree.patch
+
 # Patches for otp plugin backport
 Patch201: krb5-1.11.2-keycheck.patch
 Patch202: krb5-1.11.2-otp.patch
@@ -413,6 +415,8 @@ ln -s NOTICE LICENSE
 %patch162 -p1 -b .CVE-2014-4341_4342
 %patch163 -p1 -b .CVE-2014-4341_4342-tests
 
+%patch164 -p1 -b .gssapi-mech-doublefree
+
 %patch201 -p1 -b .keycheck
 %patch202 -p1 -b .otp
 %patch203 -p1 -b .otp2
@@ -1085,6 +1089,10 @@ exit 0
 %{_sbindir}/uuserver
 
 %changelog
+* Wed Jul 16 2014 Nalin Dahyabhai <nalin@redhat.com> - 1.11.5-9
+- gssapi: pull in proposed fix for a double free in initiators (David
+  Woodhouse, #1117963)
+
 * Mon Jul  7 2014 Nalin Dahyabhai <nalin@redhat.com> - 1.11.5-8
 - pull in fix for denial of service by injection of malformed GSSAPI tokens
   (CVE-2014-4341, CVE-2014-4342, #1116181)