From ab4656faf83750997b263b8d2d1a7ca6ebc88d0e Mon Sep 17 00:00:00 2001
From: Tom Yu <tlyu@mit.edu>
Date: Thu, 8 Mar 2012 19:58:44 +0000
Subject: [PATCH] README and patchlevel.h for krb5-1.10.1

git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-10@25755 dc483132-0cff-0310-8789-dd5450dbe970
---
 README           | 28 ++++++++++++++++++++++++++++
 src/patchlevel.h |  6 +++---
 2 files changed, 31 insertions(+), 3 deletions(-)

diff --git a/README b/README
index 6e9e39dfc..62354fea9 100644
--- a/README
+++ b/README
@@ -70,6 +70,34 @@ from using single-DES cryptosystems.  Among these is a configuration
 variable that enables "weak" enctypes, which defaults to "false"
 beginning with krb5-1.8.
 
+Major changes in 1.10.1
+-----------------------
+
+This is a bugfix release.
+
+* Fix access controls for KDB string attributes [CVE-2012-1012]
+
+* Make the ASN.1 encoding of key version numbers interoperate with
+  Windows Read-Only Domain Controllers
+
+* Avoid generating spurious password expiry warnings in cases where
+  the KDC sends an account expiry time without a password expiry time.
+
+krb5-1.10.1 changes by ticket ID
+--------------------------------
+
+7074    workaround for Solaris 8 lacking isblank
+7081    Don't use stack variable address in as_req state
+7082    Various lookaside cache fixes
+7084    Don't check mech in krb5_gss_inquire_cred_by_mech
+7087    krb5_gss_get_name_attribute fails to set display_value
+7088    Fix uninitialized variable warning in trval.c
+7089    Initialize gss_get_name_attribute output buffers
+7092    kvno ASN.1 encoding interop with Windows RODCs
+7093    Access controls for string RPCs [CVE-2012-1012]
+7096    Fix KDB iteration when callback does write calls
+7098    Fix spurious password expiry warning
+
 Major changes in 1.10
 ---------------------
 
diff --git a/src/patchlevel.h b/src/patchlevel.h
index f7ac2c4c4..1c27d5301 100644
--- a/src/patchlevel.h
+++ b/src/patchlevel.h
@@ -51,7 +51,7 @@
  */
 #define KRB5_MAJOR_RELEASE 1
 #define KRB5_MINOR_RELEASE 10
-#define KRB5_PATCHLEVEL 0
-#define KRB5_RELTAIL "postrelease"
+#define KRB5_PATCHLEVEL 1
+/* #undef KRB5_RELTAIL */
 /* #undef KRB5_RELDATE */
-#define KRB5_RELTAG "branches/krb5-1-10"
+#define KRB5_RELTAG "tags/krb5-1-10-1-final"
-- 
2.26.2