[krb5] Note where CVE-2013-6800 was fixed
Nalin Dahyabhai
nalin at fedoraproject.org
Tue Nov 19 02:29:47 UTC 2013
commit dee7ae00a438215e311e3a0c9a351e6fc08e3809
Author: Nalin Dahyabhai <nalin at dahyabhai.net>
Date: Mon Nov 18 16:07:42 2013 -0500
Note where CVE-2013-6800 was fixed
CVE-2013-6800 appears to be fixed by the same patch that fixes
CVE-2013-1418, so mention the first in changelog entries that refer to
the second.
krb5.spec | 5 +++--
1 files changed, 3 insertions(+), 2 deletions(-)
---
diff --git a/krb5.spec b/krb5.spec
index 0661f8c..693d4a7 100644
--- a/krb5.spec
+++ b/krb5.spec
@@ -1006,7 +1006,7 @@ exit 0
- update to 1.11.4
- drop patch for RT#7650, obsoleted
- drop patch for RT#7706, obsoleted as RT#7723
- - drop patch for CVE-2013-1418, included in 1.11.4
+ - drop patch for CVE-2013-1418/CVE-2013-6800, included in 1.11.4
* Tue Nov 12 2013 Nalin Dahyabhai <nalin at redhat.com> - 1.11.3-31
- switch to the simplified version of the patch for #1029110 (RT#7764)
@@ -1018,7 +1018,8 @@ exit 0
* Tue Nov 5 2013 Nalin Dahyabhai <nalin at redhat.com> - 1.11.3-29
- incorporate upstream patch for remote crash of KDCs which serve multiple
- realms simultaneously (RT#7756, CVE-2013-1418)
+ realms simultaneously (RT#7756, CVE-2013-1418/CVE-2013-6800,
+ #1026997/#1031501)
* Mon Nov 4 2013 Nalin Dahyabhai <nalin at redhat.com> - 1.11.3-28
- drop patch to add additional access() checks to ksu - they add to breakage
More information about the scm-commits
mailing list