beginning with krb5-1.8.
+Major changes in 1.12.5 (2015-12-16)
+------------------------------------
+
+This is a bugfix release. The krb5-1.12 release series has reached
+the end of its maintenance period, and krb5-1.12.5 is the last planned
+release in the krb5-1.12 series. For new deployments, installers
+should prefer the krb5-1.14 release series or later.
+
+* Fix memory aliasing issues in SPNEGO and IAKERB mechanisms that
+ could cause server crashes. [CVE-2015-2695] [CVE-2015-2696]
+ [CVE-2015-2698]
+
+* Fix build_principal memory bug that could cause a KDC
+ crash. [CVE-2015-2697]
+
+* Allow an iprop slave to receive full resyncs from KDCs running
+ krb5-1.10 or earlier.
+
+krb5-1.12.5 changes by ticket ID
+--------------------------------
+
+8302 Document multi-component profile paths
+8303 Tolerate null oid pointer in gss_release_oid()
+8304 Fix leak in gss_acquire_cred_with_password
+8305 Fix uncommon null dereference in PKINIT client
+8306 Fix uncommon leak in krb5_init_creds_step()
+8307 Do not allow stream socket retries in libkrad
+8308 Fix gss_inquire_name() name_is_MN result
+8310 Check for null name_type in gss_display_name_ext
+8311 Fix error handling in gss_export_sec_context()
+8312 Fix KDC client referrals
+8313 SPNEGO and IAKERB context aliasing bugs [CVE-2015-2695][CVE-2015-2696]
+8314 Fix mechglue gss_acquire_cred_impersonate_name
+8315 Fix build_principal memory bug [CVE-2015-2697]
+8316 Fix IAKERB context export/import [CVE-2015-2698]
+8317 Fix compatibility with pre-1.11 iprop dump files
+8318 Remove ksu -D flag documentation
+8319 Untabify kerberos.schema and kerberos.ldif
+8320 Fix error mappings for IOV MIC mechglue funcs
+8321 Fix minor utf8-to-ucs2s read overrun bug
+8322 Define error status GSS_S_BAD_MIC
+8323 Fix typo in GSS_S_UNAUTHORIZED error message
+8324 Fix gss_inquire_names_for_mech() on MS krb5 mech
+8325 Check output params on GSS OID set functions
+
+
Major changes in 1.12.4 (2015-05-29)
------------------------------------
David Bantz
Alex Baule
David Benjamin
+ Thomas Bernard
Adam Bernstein
Arlene Berry
Jeff Blaine
Radoslav Bodo
Sumit Bose
Emmanuel Bouillon
+ Philip Brown
Michael Calmer
Andrea Campi
Julien Chaffraix
Kevin Coffman
Simon Cooper
Sylvain Cortes
+ Ian Crowther
Arran Cudbard-Bell
Jeff D'Angelo
Nalin Dahyabhai
Ronni Feldt
Bill Fellows
JC Ferguson
+ Remi Ferrand
+ Paul Fertser
William Fiveash
Ákos Frohner
Sebastian Galiano
Mark Phalan
Brett Randall
Jonathan Reams
+ Jonathan Reed
Robert Relyea
Martin Rex
Jason Rogers
Ross Wilper
Augustin Wolf
David Woodhouse
+ Tsu-Phong Wu
Xu Qiang
Neng Xue
Nickolai Zeldovich
.\" Man page generated from reStructuredText.
.
-.TH "K5IDENTITY" "5" " " "1.12.4" "MIT Kerberos"
+.TH "K5IDENTITY" "5" " " "1.12.5" "MIT Kerberos"
.SH NAME
k5identity \- Kerberos V5 client principal selection rules
.
.\" Man page generated from reStructuredText.
.
-.TH "K5LOGIN" "5" " " "1.12.4" "MIT Kerberos"
+.TH "K5LOGIN" "5" " " "1.12.5" "MIT Kerberos"
.SH NAME
k5login \- Kerberos V5 acl file for host access
.
.\" Man page generated from reStructuredText.
.
-.TH "K5SRVUTIL" "1" " " "1.12.4" "MIT Kerberos"
+.TH "K5SRVUTIL" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
k5srvutil \- host key table (keytab) manipulation utility
.
.\" Man page generated from reStructuredText.
.
-.TH "KADM5.ACL" "5" " " "1.12.4" "MIT Kerberos"
+.TH "KADM5.ACL" "5" " " "1.12.5" "MIT Kerberos"
.SH NAME
kadm5.acl \- Kerberos ACL file
.
.\" Man page generated from reStructuredText.
.
-.TH "KADMIN" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KADMIN" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
kadmin \- Kerberos V5 database administration program
.
.\" Man page generated from reStructuredText.
.
-.TH "KADMIND" "8" " " "1.12.4" "MIT Kerberos"
+.TH "KADMIND" "8" " " "1.12.5" "MIT Kerberos"
.SH NAME
kadmind \- KADM5 administration server
.
.\" Man page generated from reStructuredText.
.
-.TH "KDB5_LDAP_UTIL" "8" " " "1.12.4" "MIT Kerberos"
+.TH "KDB5_LDAP_UTIL" "8" " " "1.12.5" "MIT Kerberos"
.SH NAME
kdb5_ldap_util \- Kerberos configuration utility
.
.\" Man page generated from reStructuredText.
.
-.TH "KDB5_UTIL" "8" " " "1.12.4" "MIT Kerberos"
+.TH "KDB5_UTIL" "8" " " "1.12.5" "MIT Kerberos"
.SH NAME
kdb5_util \- Kerberos database maintenance utility
.
.\" Man page generated from reStructuredText.
.
-.TH "KDC.CONF" "5" " " "1.12.4" "MIT Kerberos"
+.TH "KDC.CONF" "5" " " "1.12.5" "MIT Kerberos"
.SH NAME
kdc.conf \- Kerberos V5 KDC configuration file
.
.\" Man page generated from reStructuredText.
.
-.TH "KDESTROY" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KDESTROY" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
kdestroy \- destroy Kerberos tickets
.
.\" Man page generated from reStructuredText.
.
-.TH "KINIT" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KINIT" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
kinit \- obtain and cache Kerberos ticket-granting ticket
.
.\" Man page generated from reStructuredText.
.
-.TH "KLIST" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KLIST" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
klist \- list cached Kerberos tickets
.
.\" Man page generated from reStructuredText.
.
-.TH "KPASSWD" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KPASSWD" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
kpasswd \- change a user's Kerberos password
.
.\" Man page generated from reStructuredText.
.
-.TH "KPROP" "8" " " "1.12.4" "MIT Kerberos"
+.TH "KPROP" "8" " " "1.12.5" "MIT Kerberos"
.SH NAME
kprop \- propagate a Kerberos V5 principal database to a slave server
.
.\" Man page generated from reStructuredText.
.
-.TH "KPROPD" "8" " " "1.12.4" "MIT Kerberos"
+.TH "KPROPD" "8" " " "1.12.5" "MIT Kerberos"
.SH NAME
kpropd \- Kerberos V5 slave KDC update server
.
.\" Man page generated from reStructuredText.
.
-.TH "KPROPLOG" "8" " " "1.12.4" "MIT Kerberos"
+.TH "KPROPLOG" "8" " " "1.12.5" "MIT Kerberos"
.SH NAME
kproplog \- display the contents of the Kerberos principal update log
.
.\" Man page generated from reStructuredText.
.
-.TH "KRB5-CONFIG" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KRB5-CONFIG" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
krb5-config \- tool for linking against MIT Kerberos libraries
.
.\" Man page generated from reStructuredText.
.
-.TH "KRB5.CONF" "5" " " "1.12.4" "MIT Kerberos"
+.TH "KRB5.CONF" "5" " " "1.12.5" "MIT Kerberos"
.SH NAME
krb5.conf \- Kerberos configuration file
.
.\" Man page generated from reStructuredText.
.
-.TH "KRB5KDC" "8" " " "1.12.4" "MIT Kerberos"
+.TH "KRB5KDC" "8" " " "1.12.5" "MIT Kerberos"
.SH NAME
krb5kdc \- Kerberos V5 KDC
.
.\" Man page generated from reStructuredText.
.
-.TH "KSU" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KSU" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
ksu \- Kerberized super-user
.
.\" Man page generated from reStructuredText.
.
-.TH "KSWITCH" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KSWITCH" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
kswitch \- switch primary ticket cache
.
.\" Man page generated from reStructuredText.
.
-.TH "KTUTIL" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KTUTIL" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
ktutil \- Kerberos keytab file maintenance utility
.
.\" Man page generated from reStructuredText.
.
-.TH "KVNO" "1" " " "1.12.4" "MIT Kerberos"
+.TH "KVNO" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
kvno \- print key version numbers of Kerberos principals
.
.\" Man page generated from reStructuredText.
.
-.TH "SCLIENT" "1" " " "1.12.4" "MIT Kerberos"
+.TH "SCLIENT" "1" " " "1.12.5" "MIT Kerberos"
.SH NAME
sclient \- sample Kerberos version 5 client
.
.\" Man page generated from reStructuredText.
.
-.TH "SSERVER" "8" " " "1.12.4" "MIT Kerberos"
+.TH "SSERVER" "8" " " "1.12.5" "MIT Kerberos"
.SH NAME
sserver \- sample Kerberos version 5 server
.
*/
#define KRB5_MAJOR_RELEASE 1
#define KRB5_MINOR_RELEASE 12
-#define KRB5_PATCHLEVEL 4
-#define KRB5_RELTAIL "postrelease"
+#define KRB5_PATCHLEVEL 5
+/* #undef KRB5_RELTAIL */
/* #undef KRB5_RELDATE */
-#define KRB5_RELTAG "krb5-1.12"
+#define KRB5_RELTAG "krb5-1.12.5-final"
#, fuzzy
msgid ""
msgstr ""
-"Project-Id-Version: mit-krb5 1.12.4-postrelease\n"
+"Project-Id-Version: mit-krb5 1.12.5\n"
"Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2015-12-14 15:34-0500\n"
+"POT-Creation-Date: 2015-12-14 16:59-0500\n"
"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
"Language-Team: LANGUAGE <LL@li.org>\n"
projects / thirdparty / krb5.git / commitdiff
