diff options
Diffstat (limited to 'krb5.spec')
-rw-r--r-- | krb5.spec | 8 |
1 files changed, 7 insertions, 1 deletions
@@ -41,7 +41,7 @@ Summary: The Kerberos network authentication system Name: krb5 Version: 1.11.3 -Release: 28%{?dist} +Release: 29%{?dist} # Maybe we should explode from the now-available-to-everybody tarball instead? # http://web.mit.edu/kerberos/dist/krb5/1.11/krb5-1.11.3-signed.tar Source0: krb5-%{version}.tar.gz @@ -108,6 +108,7 @@ Patch135: krb5-1.11-check_transited.patch Patch136: krb5-1.11.3-prompter1.patch Patch137: krb5-1.11.3-prompter2.patch Patch138: krb5-1.11.3-gss-ccache-import.patch +Patch139: krb5-CVE-2013-1418.patch # Patches for otp plugin backport Patch201: krb5-1.11.2-keycheck.patch @@ -353,6 +354,7 @@ ln -s NOTICE LICENSE %patch136 -p1 -b .prompter1 %patch137 -p1 -b .prompter2 %patch138 -p1 -b .gss-ccache-import +%patch139 -p1 -b .CVE-2013-1418 %patch201 -p1 -b .keycheck %patch202 -p1 -b .otp @@ -1004,6 +1006,10 @@ exit 0 %{_sbindir}/uuserver %changelog +* Mon Nov 4 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-29 +- incorporate upstream patch for remote crash of KDCs which serve multiple + realms simultaneously (RT#7755, CVE-2013-1418) + * Mon Nov 4 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-28 - drop patch to add additional access() checks to ksu - they add to breakage when non-FILE: caches are in use (#1026099), shouldn't be resulting in any |