From patchwork Tue Nov 19 21:10:52 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Adolf Belka X-Patchwork-Id: 8250 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) client-signature RSA-PSS (4096 bits)) (Client CN "mail01.haj.ipfire.org", Issuer "R11" (verified OK)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4XtHGz3nYrz3wx0 for ; Tue, 19 Nov 2024 21:11:23 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) client-signature ECDSA (secp384r1)) (Client CN "mail02.haj.ipfire.org", Issuer "E6" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 4XtHGx0VlYz1Zb; Tue, 19 Nov 2024 21:11:21 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [127.0.0.1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4XtHGx00fNz34Hf; Tue, 19 Nov 2024 21:11:21 +0000 (UTC) Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) client-signature RSA-PSS (4096 bits)) (Client CN "mail01.haj.ipfire.org", Issuer "R11" (verified OK)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4XtHGn3YRHz2xP8 for ; Tue, 19 Nov 2024 21:11:13 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by mail01.ipfire.org (Postfix) with ESMTPSA id 4XtHGn2Cggz1wh; Tue, 19 Nov 2024 21:11:13 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1732050673; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=BCZMb3hwEWg9Y6LbE4whJqz3ZUCcs6T0cozpJjI/D54=; b=Ggss2blJj2d8PftAeflyDS9/MX6SXJc/Q9fxDfTdU8arYYUyV+yO6HUV9ORLbRWgLP5JMo zNQTxl8M12Fev2Bw== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1732050673; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=BCZMb3hwEWg9Y6LbE4whJqz3ZUCcs6T0cozpJjI/D54=; b=HcSnMfOBA++AawPzIyjAaDu29iMgVFBm5CsHJAfZRceYgc4566cVuNl0P0RjxLeBIpBSoj 9W3tWpIj/FLNibO5n4MkIAbebwF/pwJdHnN+IY58lyQCeqnmrpKXmDIU40JNIhqzgnZ0DR VXYc01g2KX1x+uRh8wmtQ+QBs5TKg9tfI1PyG/jxO7VZ2TFZey/VO2G0Kpm7qXHC06LdFn dcpmj6cnbhb3l439tLNmPsHWLDCghw0ZApGsRkYAS/BQxyziBJtOXQ+C4z8X6kYD+p7uxS YmV/OGSmMflwq+GZy1eDtpfvpadB31YR6m0BQi/lb31T+slElVROiFdiIGlZUA== From: Adolf Belka To: development@lists.ipfire.org Subject: [PATCH] krb5: Update to version 1.21.3 Date: Tue, 19 Nov 2024 22:10:52 +0100 Message-ID: <20241119211106.2194373-4-adolf.belka@ipfire.org> In-Reply-To: <20241119211106.2194373-1-adolf.belka@ipfire.org> References: <20241119211106.2194373-1-adolf.belka@ipfire.org> MIME-Version: 1.0 Message-ID-Hash: NHB7IIMWCPMQXQ5ALPBOTNMMOMHKVOYJ X-Message-ID-Hash: NHB7IIMWCPMQXQ5ALPBOTNMMOMHKVOYJ X-MailFrom: adolf.belka@ipfire.org X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header X-Mailman-Version: 3.3.8 Precedence: list List-Id: IPFire development talk Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: - Update from version 1.21.2 to 1.21.3 - Update of rootfile not required - Changelog 1.21.3 * Fix vulnerabilities in GSS message token handling [CVE-2024-37370, CVE-2024-37371]. * Fix a potential bad pointer free in krb5_cccol_have_contents(). * Fix a memory leak in the macOS ccache type. Signed-off-by: Adolf Belka --- lfs/krb5 | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/lfs/krb5 b/lfs/krb5 index cf5daa54a..73f249e8b 100644 --- a/lfs/krb5 +++ b/lfs/krb5 @@ -1,7 +1,7 @@ ############################################################################### # # # IPFire.org - A linux based firewall # -# Copyright (C) 2007-2023 IPFire Team # +# Copyright (C) 2007-2024 IPFire Team # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # @@ -26,7 +26,7 @@ include Config SUMMARY = Kerberos -VER = 1.21.2 +VER = 1.21.3 THISAPP = krb5-$(VER) DL_FILE = $(THISAPP).tar.gz @@ -44,7 +44,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_BLAKE2 = 2afb3ff962a343bc07182fdab0c0ffb221632ff38baab74278cfc721ae72deacc260221470de36e420584f00b780e13221d2e511d4831bca8e1270b7f3d9e824 +$(DL_FILE)_BLAKE2 = e909a55eaedab68e5c829bb7bbd26cec5db2d7b8d97f3b034de94d8f957003f16977ac619afee3b862f288e59f05c5e44f41e65b8883961c8b22a26e2f4733bc install : $(TARGET)