rpms/krb5/devel krb5-1.6.3-lucid-acceptor.patch, NONE, 1.1 krb5.spec, 1.164, 1.165
Nalin Somabhai Dahyabhai (nalin)
fedora-extras-commits at redhat.com
Tue Apr 1 20:54:30 UTC 2008
Author: nalin
Update of /cvs/extras/rpms/krb5/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv16173
Modified Files:
krb5.spec
Added Files:
krb5-1.6.3-lucid-acceptor.patch
Log Message:
- libgssapi_krb5: properly export the acceptor subkey when creating a lucid
context (Kevin Coffman, via the nfs4 mailing list)
krb5-1.6.3-lucid-acceptor.patch:
--- NEW FILE krb5-1.6.3-lucid-acceptor.patch ---
>From Kevin Coffman, via the nfs4 mailing list.
diff -up src/lib/gssapi/krb5/lucid_context.c ./src/lib/gssapi/krb5/lucid_context.c
--- src/lib/gssapi/krb5/lucid_context.c 2008-04-01 16:28:11.000000000 -0400
+++ src/lib/gssapi/krb5/lucid_context.c 2008-04-01 16:28:01.000000000 -0400
@@ -231,7 +231,7 @@ make_external_lucid_ctx_v1(
&lctx->cfx_kd.ctx_key)))
goto error_out;
if (gctx->have_acceptor_subkey) {
- if ((retval = copy_keyblock_to_lucid_key(gctx->enc,
+ if ((retval = copy_keyblock_to_lucid_key(gctx->acceptor_subkey,
&lctx->cfx_kd.acceptor_subkey)))
goto error_out;
lctx->cfx_kd.have_acceptor_subkey = 1;
Index: krb5.spec
===================================================================
RCS file: /cvs/extras/rpms/krb5/devel/krb5.spec,v
retrieving revision 1.164
retrieving revision 1.165
diff -u -r1.164 -r1.165
--- krb5.spec 18 Mar 2008 18:13:22 -0000 1.164
+++ krb5.spec 1 Apr 2008 20:53:54 -0000 1.165
@@ -100,6 +100,7 @@
Patch75: krb5-CVE-2008-0947.patch
Patch76: krb5-CVE-2007-5901.patch
Patch77: krb5-CVE-2007-5971.patch
+Patch78: krb5-1.6.3-lucid-acceptor.patch
License: MIT, freely distributable.
URL: http://web.mit.edu/kerberos/www/
@@ -230,6 +231,10 @@
certificate.
%changelog
+* Tue Apr 1 2008 Nalin Dahyabhai <nalin at redhat.com> 1.6.3-11
+- libgssapi_krb5: properly export the acceptor subkey when creating a lucid
+ context (Kevin Coffman, via the nfs4 mailing list)
+
* Tue Mar 18 2008 Nalin Dahyabhai <nalin at redhat.com> 1.6.3-10
- add fixes from MITKRB5-SA-2008-001 for use of null or dangling pointer
when v4 compatibility is enabled on the KDC (CVE-2008-0062, CVE-2008-0063,
@@ -1349,6 +1354,7 @@
%patch75 -p0 -b .2008-0947
%patch76 -p0 -b .2007-5901
%patch77 -p0 -b .2007-5971
+%patch78 -p0 -b .lucid_acceptor
cp src/krb524/README README.krb524
gzip doc/*.ps
More information about the fedora-extras-commits
mailing list