[krb5/f15] - apply upstream patch to fix a null pointer dereference when processing TGS requests (CVE-2011-1530
Nalin Dahyabhai
nalin at fedoraproject.org
Tue Dec 6 19:11:43 UTC 2011
commit 271fec4e3f024107b736bd0f9b350bc460e2bab6
Author: Nalin Dahyabhai <nalin at dahyabhai.net>
Date: Tue Dec 6 14:10:55 2011 -0500
- apply upstream patch to fix a null pointer dereference when processing TGS requests (CVE-2011-1530, #753748)
krb5.spec | 8 +++++++-
1 files changed, 7 insertions(+), 1 deletions(-)
---
diff --git a/krb5.spec b/krb5.spec
index 8913f08..9a43bd8 100644
--- a/krb5.spec
+++ b/krb5.spec
@@ -6,7 +6,7 @@
Summary: The Kerberos network authentication system
Name: krb5
Version: 1.9.2
-Release: 3%{?dist}
+Release: 4%{?dist}
# Maybe we should explode from the now-available-to-everybody tarball instead?
# http://web.mit.edu/kerberos/dist/krb5/1.9/krb5-1.9.1-signed.tar
Source0: krb5-%{version}.tar.gz
@@ -60,6 +60,7 @@ Patch86: krb5-1.9-debuginfo.patch
Patch87: krb5-1.9.1-sendto_poll2.patch
Patch89: krb5-1.9.1-sendto_poll3.patch
Patch90: krb5-1.9-aes-hmac.patch
+Patch91: http://web.mit.edu/kerberos/advisories/2011-007-patch.txt
License: MIT
URL: http://web.mit.edu/kerberos/www/
@@ -213,6 +214,7 @@ ln -s NOTICE LICENSE
%patch87 -p1 -b .sendto_poll2
%patch89 -p1 -b .sendto_poll3
%patch90 -p1 -b .aes-hmac
+%patch91 -p1 -b .2011-007
gzip doc/*.ps
sed -i -e '1s!\[twoside\]!!;s!%\(\\usepackage{hyperref}\)!\1!' doc/api/library.tex
@@ -674,6 +676,10 @@ exit 0
%{_sbindir}/uuserver
%changelog
+* Tue Dec 6 2011 Nalin Dahyabhai <nalin at redhat.com> 1.9.2-4
+- apply upstream patch to fix a null pointer dereference when processing
+ TGS requests (CVE-2011-1530, #753748)
+
* Wed Nov 30 2011 Nalin Dahyabhai <nalin at redhat.com> 1.9.2-3
- correct a bug in the fix for #754001 so that the file creation context is
consistently reset
More information about the scm-commits
mailing list