Your message dated Sat, 13 Jul 2013 14:06:02 +0000
with message-id <e1uy0sy-0005ub...@franck.debian.org>
and subject line Bug#708267: fixed in krb5 1.10.1+dfsg-5+deb7u1
has caused the Debian Bug report #708267,
regarding cve-2002-2443: kpasswd udp ping-pong
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
708267: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=708267
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: krb5-admin-server
Version: 1.10.1+dfsg-5
Owner: ka...@mit.edu
Upstream has fixed CVE-2002-2443 in their git master, with the following
commit message:
Fix kpasswd UDP ping-pong [CVE-2002-2443]
The kpasswd service provided by kadmind was vulnerable to a UDP
"ping-pong" attack [CVE-2002-2443]. Don't respond to packets unless
they pass some basic validation, and don't respond to our own error
packets.
Some authors use CVE-1999-0103 to refer to the kpasswd UDP ping-pong
attack or UDP ping-pong attacks in general, but there is discussion
leading toward narrowing the definition of CVE-1999-0103 to the echo,
chargen, or other similar built-in inetd services.
Thanks to Vincent Danen for alerting us to this issue.
CVSSv2: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:P/RL:O/RC:C
--- End Message ---
--- Begin Message ---
Source: krb5
Source-Version: 1.10.1+dfsg-5+deb7u1
We believe that the bug you reported is fixed in the latest version of
krb5, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 708...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Michael Gilbert <mgilb...@debian.org> (supplier of updated krb5 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 30 May 2013 01:03:26 +0000
Source: krb5
Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-multidev
libkrb5-dev libkrb5-dbg krb5-pkinit krb5-doc libkrb5-3 libgssapi-krb5-2
libgssrpc4 libkadm5srv-mit8 libkadm5clnt-mit8 libk5crypto3 libkdb5-6
libkrb5support0 krb5-gss-samples krb5-locales
Architecture: source all amd64
Version: 1.10.1+dfsg-5+deb7u1
Distribution: stable-security
Urgency: high
Maintainer: Sam Hartman <hartm...@debian.org>
Changed-By: Michael Gilbert <mgilb...@debian.org>
Description:
krb5-admin-server - MIT Kerberos master server (kadmind)
krb5-doc - Documentation for MIT Kerberos
krb5-gss-samples - MIT Kerberos GSS Sample applications
krb5-kdc - MIT Kerberos key server (KDC)
krb5-kdc-ldap - MIT Kerberos key server (KDC) LDAP plugin
krb5-locales - Internationalization support for MIT Kerberos
krb5-multidev - Development files for MIT Kerberos without Heimdal conflict
krb5-pkinit - PKINIT plugin for MIT Kerberos
krb5-user - Basic programs to authenticate using MIT Kerberos
libgssapi-krb5-2 - MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
libgssrpc4 - MIT Kerberos runtime libraries - GSS enabled ONCRPC
libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library
libkadm5clnt-mit8 - MIT Kerberos runtime libraries - Administration Clients
libkadm5srv-mit8 - MIT Kerberos runtime libraries - KDC and Admin Server
libkdb5-6 - MIT Kerberos runtime libraries - Kerberos database
libkrb5-3 - MIT Kerberos runtime libraries
libkrb5-dbg - Debugging files for MIT Kerberos
libkrb5-dev - Headers and development libraries for MIT Kerberos
libkrb5support0 - MIT Kerberos runtime libraries - Support library
Closes: 708267
Changes:
krb5 (1.10.1+dfsg-5+deb7u1) stable-security; urgency=high
.
* Non-maintainer upload by the Security Team.
* Fix cve-2002-2443: denial-of-service issue due to improper UDP packet
validation (closes: #708267).
Checksums-Sha1:
9c21119e529b81832f79618f7866c4d1cde8818e 3649 krb5_1.10.1+dfsg-5+deb7u1.dsc
dd4efcb604aec3f7faca0cb97e9dbd1f456c710e 10638231 krb5_1.10.1+dfsg.orig.tar.gz
27753e59ec70da30e90984406f40b7d21e483fe0 132477
krb5_1.10.1+dfsg-5+deb7u1.debian.tar.gz
b45a1ef5e9de52cd6528c27f9d42961ee1e754f8 2665144
krb5-doc_1.10.1+dfsg-5+deb7u1_all.deb
9bbe440b60a0a6d4aead8dbda56b79e734a75137 1503134
krb5-locales_1.10.1+dfsg-5+deb7u1_all.deb
db28babe15a2c01b37448a2a4dec00c858f0ed0c 153580
krb5-user_1.10.1+dfsg-5+deb7u1_amd64.deb
9996356b7ea2775ce1cc58817a80261097254cb3 226048
krb5-kdc_1.10.1+dfsg-5+deb7u1_amd64.deb
65322e1154fe582fa70780b6b7e36dd08a4fde63 121210
krb5-kdc-ldap_1.10.1+dfsg-5+deb7u1_amd64.deb
559a0cb6772b58fa52d4969098b9da1187b45e79 122982
krb5-admin-server_1.10.1+dfsg-5+deb7u1_amd64.deb
cd7a33324dc6fd82a9487ae03118f6ee7d02d9d4 153564
krb5-multidev_1.10.1+dfsg-5+deb7u1_amd64.deb
6360e0eb95db8295b27102df3b185e08279d8faa 39152
libkrb5-dev_1.10.1+dfsg-5+deb7u1_amd64.deb
722a109f5b58ba920387e03c241063988e15cd83 2203656
libkrb5-dbg_1.10.1+dfsg-5+deb7u1_amd64.deb
fb8ff9096975095619b508f67848c90235e2afdf 82142
krb5-pkinit_1.10.1+dfsg-5+deb7u1_amd64.deb
73b30d6bca3f7cfe956a86bfa99635f09c6dcf7f 393950
libkrb5-3_1.10.1+dfsg-5+deb7u1_amd64.deb
feaf265dfdf8a758a1a5c8b4231031e795c181ef 147566
libgssapi-krb5-2_1.10.1+dfsg-5+deb7u1_amd64.deb
d824705f42c57bd8e7e8995c0b4528291338e77f 87518
libgssrpc4_1.10.1+dfsg-5+deb7u1_amd64.deb
f3b4df2da336c80f550c98b46200f1c612c07eae 84604
libkadm5srv-mit8_1.10.1+dfsg-5+deb7u1_amd64.deb
f82cc20be848115d08a6d1713fa514a058b55a4a 67742
libkadm5clnt-mit8_1.10.1+dfsg-5+deb7u1_amd64.deb
c90d4d0cdc78c3f8913e930ec42e488c0caec1c3 112416
libk5crypto3_1.10.1+dfsg-5+deb7u1_amd64.deb
0da641986a0cf74de410ccd835bbeda2b9830ced 66854
libkdb5-6_1.10.1+dfsg-5+deb7u1_amd64.deb
c68fffb29a235938c377599c9aef5c77e27a4229 49120
libkrb5support0_1.10.1+dfsg-5+deb7u1_amd64.deb
e9e481b614d71eb2ec6937b110f2198dce562d6b 51342
krb5-gss-samples_1.10.1+dfsg-5+deb7u1_amd64.deb
Checksums-Sha256:
5c1759e92aed4134816ba9e811ebc6555b968ca50fa4c55df54bb4f69c15e6a9 3649
krb5_1.10.1+dfsg-5+deb7u1.dsc
f0b63fb8ffd0ae0bf3276da37fc55857079c75dccf78b31d628a0aeccfa8b183 10638231
krb5_1.10.1+dfsg.orig.tar.gz
a8318cda7538299bfe5244f870633fbcf2bf763ce26fc11a4c433f5254e38bfc 132477
krb5_1.10.1+dfsg-5+deb7u1.debian.tar.gz
9ce2479952f6a3f9e448b52ef902156f7350be2391e35c56b809de0c57f867f9 2665144
krb5-doc_1.10.1+dfsg-5+deb7u1_all.deb
8fc5e6d6ea62e6178f5647184edcaef5e92882f9cc219e26f19b972c226f09a6 1503134
krb5-locales_1.10.1+dfsg-5+deb7u1_all.deb
cd1a349e37808e0fef0b609eaf28ee39f9fe86fcbeb22ebd99f0b8ae2c194ce8 153580
krb5-user_1.10.1+dfsg-5+deb7u1_amd64.deb
e9c7fecbd0472476ed57556072908952425d17bb2be1e7749fad99a6cc29ca1f 226048
krb5-kdc_1.10.1+dfsg-5+deb7u1_amd64.deb
0430d1eb447fffd5f94f2656aceea8e06b9f2a73d9c1ea03f03adc413a0bbc48 121210
krb5-kdc-ldap_1.10.1+dfsg-5+deb7u1_amd64.deb
bae237fff0ad58ba4bf1e82723fb4570cac11ec713bd7e16baefa6b2c58a0401 122982
krb5-admin-server_1.10.1+dfsg-5+deb7u1_amd64.deb
89028ef54624c30fa5b47f732f54bd5e91e100082c514584ed6ec3e03de86254 153564
krb5-multidev_1.10.1+dfsg-5+deb7u1_amd64.deb
216607e07198c3b7001a3a5ccb6bcf4bdd14ee0738a18133ba83e2118253a2a1 39152
libkrb5-dev_1.10.1+dfsg-5+deb7u1_amd64.deb
64def88e4d06939310c45ef8dd556e90eaf7241706d96d71908254f05f90f20a 2203656
libkrb5-dbg_1.10.1+dfsg-5+deb7u1_amd64.deb
46b0a4ae633900b6fd5d79065046071558b973b483e079f25274a366a622ad1c 82142
krb5-pkinit_1.10.1+dfsg-5+deb7u1_amd64.deb
7d3b2bc68b9fa62f3dafa7391870c48c5cc125fe21ea7a8b6892bebcbea7287c 393950
libkrb5-3_1.10.1+dfsg-5+deb7u1_amd64.deb
8dd97e9c2f65ab5fafaca046af3185a44df732bd63b1ed2c51992e4bb17cdd39 147566
libgssapi-krb5-2_1.10.1+dfsg-5+deb7u1_amd64.deb
e50c29f674cd10f1998625393c7c4e6cbca656d83267b8219266e9f182b9914a 87518
libgssrpc4_1.10.1+dfsg-5+deb7u1_amd64.deb
eb3de35ca2b240cd475e54ff95c696a4cb9567a9f08080bfc491120e32eda841 84604
libkadm5srv-mit8_1.10.1+dfsg-5+deb7u1_amd64.deb
a2aa924d14fbdb5e65ac78b498ccc453fd51897d33adc721b5731ab1c4744ef9 67742
libkadm5clnt-mit8_1.10.1+dfsg-5+deb7u1_amd64.deb
719757866b767b0917370300ab94aeb6539bc7923b7ca29ae2021bfb21a165de 112416
libk5crypto3_1.10.1+dfsg-5+deb7u1_amd64.deb
d521ef545ade4c74c048daaf42cdb41615647a5f02ef465503233858770d4dd8 66854
libkdb5-6_1.10.1+dfsg-5+deb7u1_amd64.deb
d4cdd09e672abc4be25a77d6b10f887d8087c3b12fe08ea57a9080e255b5fb39 49120
libkrb5support0_1.10.1+dfsg-5+deb7u1_amd64.deb
81d3e2d22d1fc5a261149205ccba156e7bb5a1d9022d446bc7dab74101e9fe16 51342
krb5-gss-samples_1.10.1+dfsg-5+deb7u1_amd64.deb
Files:
95331e1573c997c0ef2684c4ab29fa79 3649 net standard
krb5_1.10.1+dfsg-5+deb7u1.dsc
3da41835dd4df7d4f3583f82cdbf1a84 10638231 net standard
krb5_1.10.1+dfsg.orig.tar.gz
2ada0fe230b3f701917ec6924b7a4914 132477 net standard
krb5_1.10.1+dfsg-5+deb7u1.debian.tar.gz
21757d2b6f667b1aeadfe97784dbd91f 2665144 doc optional
krb5-doc_1.10.1+dfsg-5+deb7u1_all.deb
5fc1b64357e7aa579b89e1b9fecec3d1 1503134 localization standard
krb5-locales_1.10.1+dfsg-5+deb7u1_all.deb
9780e6da9f112ce5298685f1e5dae43d 153580 net optional
krb5-user_1.10.1+dfsg-5+deb7u1_amd64.deb
73951f166e166822f65d5b25ebe1cfce 226048 net optional
krb5-kdc_1.10.1+dfsg-5+deb7u1_amd64.deb
2ef7aae2c339a6fa3bd9c21b3eaef75b 121210 net extra
krb5-kdc-ldap_1.10.1+dfsg-5+deb7u1_amd64.deb
963878dae1debc916a64e2831a43efb9 122982 net optional
krb5-admin-server_1.10.1+dfsg-5+deb7u1_amd64.deb
f0e74533dcfcb28714f7c00a88bb2922 153564 libdevel optional
krb5-multidev_1.10.1+dfsg-5+deb7u1_amd64.deb
bcd86e610601a73228d63da868d24466 39152 libdevel extra
libkrb5-dev_1.10.1+dfsg-5+deb7u1_amd64.deb
dbcd14c8b109e44570c3fb6a26134fab 2203656 debug extra
libkrb5-dbg_1.10.1+dfsg-5+deb7u1_amd64.deb
f42faf40d0f4649e69aa4d3cc07b1ff1 82142 net extra
krb5-pkinit_1.10.1+dfsg-5+deb7u1_amd64.deb
d06d15fdaf2d9735e4cfeee1f008db70 393950 libs standard
libkrb5-3_1.10.1+dfsg-5+deb7u1_amd64.deb
eaa5eea59ed0af566f3a393b489f8837 147566 libs standard
libgssapi-krb5-2_1.10.1+dfsg-5+deb7u1_amd64.deb
300c374c4cc56e63bc0bd5e4c92bedaf 87518 libs standard
libgssrpc4_1.10.1+dfsg-5+deb7u1_amd64.deb
32364b39a9bea76d0acf926f8850f097 84604 libs standard
libkadm5srv-mit8_1.10.1+dfsg-5+deb7u1_amd64.deb
be6719617bb94dc7be61b72e7b1f70d9 67742 libs standard
libkadm5clnt-mit8_1.10.1+dfsg-5+deb7u1_amd64.deb
92da734f5c94322f30072889e192be64 112416 libs standard
libk5crypto3_1.10.1+dfsg-5+deb7u1_amd64.deb
841f6e25c2fd37f4cae3fc91655c582b 66854 libs standard
libkdb5-6_1.10.1+dfsg-5+deb7u1_amd64.deb
bbdb46d7ed6672806643ca9e4f27a2e9 49120 libs standard
libkrb5support0_1.10.1+dfsg-5+deb7u1_amd64.deb
6c96ce7f34f1461c8b99c7741dd79805 51342 net extra
krb5-gss-samples_1.10.1+dfsg-5+deb7u1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=
=2iPq
-----END PGP SIGNATURE-----
--- End Message ---
