From: Tom Yu Date: Tue, 17 Apr 2007 19:31:29 +0000 (+0000) Subject: Update README, patchlevel, and copyrights for krb5-1.5.3 X-Git-Tag: krb5-1.5.3-final~1 X-Git-Url: http://git.tremily.us/?a=commitdiff_plain;h=b25628fdfc9731f7e10e38fcfcc477615f619914;p=krb5.git Update README, patchlevel, and copyrights for krb5-1.5.3 git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-5@19478 dc483132-0cff-0310-8789-dd5450dbe970 --- diff --git a/README b/README index e9b8e4b09..fa5e8fef1 100644 --- a/README +++ b/README @@ -1,4 +1,4 @@ - Kerberos Version 5, Release 1.5.2 + Kerberos Version 5, Release 1.5.3 Release Notes The MIT Kerberos Team @@ -7,20 +7,20 @@ Unpacking the Source Distribution --------------------------------- The source distribution of Kerberos 5 comes in a gzipped tarfile, -krb5-1.5.2.tar.gz. Instructions on how to extract the entire +krb5-1.5.3.tar.gz. Instructions on how to extract the entire distribution follow. If you have the GNU tar program and gzip installed, you can simply do: - gtar zxpf krb5-1.5.2.tar.gz + gtar zxpf krb5-1.5.3.tar.gz If you don't have GNU tar, you will need to get the FSF gzip distribution and use gzcat: - gzcat krb5-1.5.2.tar.gz | tar xpf - + gzcat krb5-1.5.3.tar.gz | tar xpf - -Both of these methods will extract the sources into krb5-1.5.2/src and -the documentation into krb5-1.5.2/doc. +Both of these methods will extract the sources into krb5-1.5.3/src and +the documentation into krb5-1.5.3/doc. Building and Installing Kerberos 5 ---------------------------------- @@ -60,6 +60,28 @@ http://krbdev.mit.edu/rt/ and logging in as "guest" with password "guest". +Major changes in krb5-1.5.3 +--------------------------- + +[5512] Fix MITKRB5-SA-2007-001: telnetd allows login as arbitrary user + [CVE-2007-0956, VU#220816] + +[5513] Fix MITKRB5-SA-2007-002: buffer overflow in krb5_klog_syslog + [CVE-2007-0957, VU#704024] + +[5520] Fix MITKRB5-SA-2007-003: double-free in kadmind - the RPC + library could perform a double-free due to a GSS-API library + bug [CVE-2007-1216, VU#419344] + +krb5-1.5.3 changes by ticket ID +------------------------------- + +5512 (krb5-1.5.x) MITKRB5-SA-2007-001: telnetd allows login as + arbitrary user +5513 (krb5-1.5.x) MITKRB5-SA-2007-002: buffer overflow in + krb5_klog_syslog +5520 (krb5-1.5.x) MITKRB5-SA-2007-003: double-free in kadmind + Major changes in krb5-1.5.2 --------------------------- @@ -342,7 +364,7 @@ for an up-to-date list, including links to the complete tickets. Copyright Notice and Legal Administrivia ---------------------------------------- -Copyright (C) 1985-2006 by the Massachusetts Institute of Technology. +Copyright (C) 1985-2007 by the Massachusetts Institute of Technology. All rights reserved. diff --git a/doc/copyright.texinfo b/doc/copyright.texinfo index cfb9e2ec3..1199e24a4 100644 --- a/doc/copyright.texinfo +++ b/doc/copyright.texinfo @@ -1,4 +1,4 @@ -Copyright @copyright{} 1985-2006 by the Massachusetts Institute of Technology. +Copyright @copyright{} 1985-2007 by the Massachusetts Institute of Technology. @quotation Export of software employing encryption from the United States of diff --git a/src/patchlevel.h b/src/patchlevel.h index 5fcf1a4c1..86007136a 100644 --- a/src/patchlevel.h +++ b/src/patchlevel.h @@ -52,7 +52,7 @@ */ #define KRB5_MAJOR_RELEASE 1 #define KRB5_MINOR_RELEASE 5 -#define KRB5_PATCHLEVEL 2 -#define KRB5_RELTAIL "postrelease" +#define KRB5_PATCHLEVEL 3 +/* #undef KRB5_RELTAIL */ /* #undef KRB5_RELDATE */ -#define KRB5_RELTAG "branches/krb5-1-5" +#define KRB5_RELTAG "tags/krb5-1-5-3-final"