Debian
heimdal package

Change logs for heimdal source package in Buster

  1. Buster (10)
  2. Change log 
  • heimdal (7.5.0+dfsg-3) unstable; urgency=high

  * CVE-2018-16860: Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum.
    Closes: #928966.
  * CVE-2019-12098: Always confirm PA-PKINIT-KX for anon PKINIT.
    Closes: #929064.
  * Update test certificates to pre 2038 expiry. Closes: #923930.

 -- Brian May <email address hidden>  Tue, 21 May 2019 18:04:35 +1000
  • heimdal (7.5.0+dfsg-2.1) unstable; urgency=medium

  * Non-maintainer upload
  * Add patch to create headers before building (Closes: 906623)

 -- Hilko Bengen <email address hidden>  Sun, 28 Oct 2018 15:10:44 +0100
  • heimdal (7.5.0+dfsg-2) unstable; urgency=medium

  * Replace "MAXHOSTNAMELEN" with "MaxHostNameLen" in kdc/kx509.c for The
    Hurd. Closes: #900079.

 -- Brian May <email address hidden>  Sat, 02 Jun 2018 10:01:46 +1000
  • heimdal (7.5.0+dfsg-1) unstable; urgency=high

  * New upstream version. (Closes: #850723)
    + CVE-2017-17439: Remote unauthenticated DoS in Heimdal-KDC 7.4
      (Closes: #878144, #868157)
    + Refresh patches.
  * Bump Standards-Version to 4.1.2 and compat level to 10.
    + Remove explicit reference to dh-autoreconf.
  * Use uscan to get orig source.
    + Refrain from mangling some bundled RFC texts;
      just exclude the mas they are not installed into any binary anyway.
    + Update d/copyright to DEP-5.
    + Can now use standard uscan/gbp/pristine-tar workflow.
  * Fix some lintian errors/warnings.
    + Strip trailing whitespace from changelog.
    + Fix some duplicate long descriptions.
    + Use optional priority everywhere.
    + Update/remove some overrides.
    + Enforce set -e in maintainer scripts.
    + Enable hardening.
  * Migrate to -dbgsym.
  * Add myself to uploaders.

 -- Dominik George <email address hidden>  Fri, 15 Dec 2017 01:13:04 +0100
  • heimdal (7.4.0.dfsg.1-2) unstable; urgency=medium

  [ Jelmer Vernooij ]
  * Remove myself from uploaders.

  [ Brian May ]
  * Be explicit with heimdal.mkey filename in postinst. Closes: #868638.
  * Tests should respect DEB_BUILD_OPTIONS=nocheck.  Closes: #868842.

 -- Brian May <email address hidden>  Sun, 23 Jul 2017 10:32:34 +1000
  • heimdal (7.4.0.dfsg.1-1) unstable; urgency=high

  * New upstream version.
  * Update standards version to 4.0.0.
  * CVE-2017-11103: Fix Orpheus' Lyre KDC-REP service name validation.
    (Closes: #868208).

 -- Brian May <email address hidden>  Sat, 15 Jul 2017 19:47:32 +1000